"topic:mitre" — Search

Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.

1.1k111Updated 12 hours ago

awesomeawesome-listcybersecuritydetection-engineeringmitresplunkthreat-detection

nshalabi/ATTACK-Tools

Utilities for MITRE™ ATT&CK

HTML1.1k215Updated 2 weeks ago

adversary-emulationmitremitre-attackredteamredteaming

vectra-ai-research/MAAD-AF

MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).

PowerShell41662Updated 3 hours ago

adversary-emulationazureadcloud-administrationcloud-securityentra-ididentity-access-managementmicrosoftmicrosoft-azure-securitymicrosoft-graphmicrosoft365mitrepowershellred-teamsecuritysecurity-testingttp

Cyb3rWard0g/Invoke-ATTACKAPIArchived

A PowerShell script to interact with the MITRE ATT&CK Framework via its own API

PowerShell37083Updated 3 months ago

mitremitre-attack-dbpowershell

redcanaryco/chain-reactor

Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.

C33238Updated 2 days ago

adversary-simulationelflinuxmitremitre-attacksecuritysecurity-testing

op7ic/EDR-Testing-Script

Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads

Batchfile31685Updated 1 week ago

attedredr-solutionsincident-responsemitresecuritysecurity-audit

mitre/caldera-ot

MITRE Caldera™ for OT Plugins & Capabilities

24032Updated 5 days ago

adversary-emulationbacnetcalderacybersecuritydnp3mitremitre-attackmitre-corporationmodbusoperational-technologyotprofinet

Yamato-Security/hayabusa-rules

Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.

Python21427Updated 1 week ago

analysisattackdfireventhayabusalogmitresigmawindows

AzureArchitecture/threat-model-templates

Templates for the Microsoft Threat Modeling Tool

17443Updated 2 weeks ago

attackcybersecurityfabricmitremitre-attackpurviewsdlsecuritystridethreat-modelthreat-modeling

mitre/saf

The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines

TypeScript17442Updated 12 hours ago

compliancedevsecopsjsonmitremitre-corporationmitre-safsecuritysecurity-automationsecurity-automation-framework

jimmy-ly00/Ransomware-PoC

A simple, fully python ransomware PoC using AES-CTR and RSA. Supports Windows, Linux and macOS

Python14441Updated 2 days ago

data-encrypted-for-impactmitremitre-attackpythonpython-ransomware-pocpython3ransomwareransomware-poct1486ta0040wastedlocker

blueteam0ps/AllthingsTimesketch

This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.

Shell11821Updated 2 weeks ago

forensicsmitremitre-attacknode-redplasorapidtimesketchtriage

mvelazc0/attack2jira

attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage

Python11529Updated 4 months ago

attack-coveragedetection-engineeringmitremitre-attack

qeeqbox/mitre-visualizer

🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)

Python10423Updated 17 hours ago

advanced-persistent-threatattackmalwaremitrenetwork-graphtactictechniquetool

rtfmkiesel/loldrivers-client

Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io

Go947Updated 2 days ago

driversgolangmitrevulnerabilitieswindows

sickcodes/security

Collection of CVEs from Sick Codes, or collaborations on https://sick.codes security research & advisories.

Shell9020Updated 5 days ago

advisoriesbugscvecwemitresecurityvulnerabilities

ezztahoun/attack_flow_detector

Find relevant incidents, logs, events, and alerts to all of your incidents. [Attack Flows, Attack Chains, & Root Cause Discovery - NO LLMs, NO Queries, Just Explainable Machine Learning] >> Use it for free here: https://app.cypienta.io

Python7356Updated 2 weeks ago

correlationcyber-analyticscybersecuritymitresecuritysecurity-analysissoc-automation

mitre/engage

MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.

6811Updated 3 weeks ago

active-defensecyber-deceptioncyberdefensecybersecuritydeceptionmitremitre-attackmitre-corporation

OWASP/cwe-tool

A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.

JavaScript6323Updated 4 weeks ago

clicvecwecwe-discoveryjsonmitreowaspvulnerabilities

Kart1keya/Hachi

This tool maps a file's behavior on MITRE ATT&CK matrix.

YARA6013Updated 1 week ago

defcondefcon27malware-analysismalware-detectionmalware-researchmitremitre-attack

stevespringett/CPE-Parser

A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST

Java5418Updated 1 day ago

cpejavalibrarymitrenistnvd

svch0stz/TheThreatHuntLibrary

Library of threat hunts to get any user started!

Python506Updated 1 week ago

cybersecurityhuntinghypothesismitrethreat-huntingthreathunting

m3n0sd0n4ld/uCVE

uCVE is a tool written in GO that allows to extract CVE's related to a specific software and version, obtaining a report in HTML format with the result and/or exporting it to the pentesting report.

Go376Updated 2 weeks ago

cvegogolanghacking-toolmitrenistreportreportingvulnerabilities

yogsec/BugBoard

BugBoard: A comprehensive open-source cybersecurity tool for vulnerability detection and bug hunting.

HTML366Updated 1 day ago

bug-bounty-toolbug-hunter-dashboardbug-trackerbug-tracking-systembugboardcybersecurityhackers-dashboardhackers-machinehackinghacking-frameworkhacking-toolhacking-toolkithacking-toolsmitreosintowaspowasp-top-10payloadsyogsec

Page 1 of 6