"topic:mitre-attack" — Search

632 results for “topic:mitre-attack”

Small and highly portable detection tests based on MITRE's ATT&CK.

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.

Go11.2k900Updated just now

best-practicedevopskubernetesmitre-attacknsasecurityvulnerability-detection

A-

A-poc/RedTeam-Tools

Tools and Techniques for Red Team / Penetration Testing

8.6k1.2kUpdated just now

cheatsheetcybersecurityenumerationhackinglinuxmitre-attackpayloadpenetration-testingpentestpentest-toolsred-teamred-team-toolsredteamresourcessecurity-toolstoolswindows

mitre/caldera

Automated Adversary Emulation Platform

Python6.8k1.3kUpdated 3 hours ago

adversary-emulationcalderacybersecurityhackinghacktoberfestmitremitre-attackmitre-corporationred-teamsecurity-automationsecurity-testing

olafhartong/sysmon-modular

A repository of sysmon configuration modules

PowerShell3.0k643Updated 2 hours ago

dfirmitre-attackmodularsecurity-toolssysmonthreat-hunting

sbousseaden/EVTX-ATTACK-SAMPLES

Windows Events Attack Samples

HTML2.5k430Updated 4 hours ago

datasetdetection-engineeringdfirevtxmitre-attackthreat-huntingwindows-securitywinlogbeat

mikeroyal/Digital-Forensics-Guide

Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

Python2.5k271Updated 1 day ago

alertingcyber-securitydetection-engineeringdfirdigital-forensicsdigitalforensicreadinessdigitalforensicsforensic-analysisforensicsforensics-investigationsforensics-toolsintrusion-detectionmitre-attacknetwork-securityoffensive-securityosintport-scanningsecuritysiemthreat-intelligence

mitre-attack/attack-navigator

Web app that provides basic navigation and annotation of ATT&CK matrices

TypeScript2.3k678Updated 2 days ago

cticyber-threat-intelligencecybersecuritymitre-attackmitre-corporation

DataDog/stratus-red-team

:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

Go2.3k289Updated 21 hours ago

adversary-emulationawsaws-securityazure-securitycloud-native-securitycloud-securitydetection-engineeringgcp-securitykubernetes-securitymitre-attackpurple-teamsecuritythreat-detection

Shuffle/Shuffle

Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.

JavaScript2.2k394Updated 4 hours ago

automationcybersecuritydiscordintegrationsmitre-attackopenapiorchestrationorchestratororchestrator-guisecuritysecurity-automationsecurity-orchestratorshufflesoarworkflow-editor

walidshaari/Certified-Kubernetes-Security-Specialist

Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.

AGS Script2.1k557Updated just now

apparmorcertificationcksckssexam-objectivesfalcokernel-hardeningkube-benchkube-hunterkuberneteskubernetes-securitymitre-attackopen-policy-agentos-footprintpodpod-security-policypolicyseccompsecuritytrivy

center-for-threat-informed-defense/adversary_emulation_library

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

C2.1k357Updated 1 day ago

adversary-emulationadversary-emulation-plansctidcyber-threat-intelligencecybersecuritymitre-attackred-teamthreat-informed-defense

cyb3rxp/awesome-soc

A curated knowledge base to build, run and mature a SOC (including CSIRT).

1.6k258Updated 2 hours ago

architecturecertcsirtcybersecuritydetection-engineeringdfirincident-responsemitre-attackpurpleteamrisk-managementsecurity-monitoringsiemsirpsoarsocthreat-detectionthreat-huntingtipttp

austinsonger/Incident-Playbook

GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]

1.5k281Updated 9 hours ago

catalogcontributions-welcomecontributors-welcomecybersecuritycybersecurity-playbookincident-managementincident-responseincidentsmitremitre-attackplaybook

ION28/BLUESPAWN

An Active Defense and EDR software to empower Blue Teams

C++1.3k175Updated 1 week ago

active-defenseanti-virusblue-teamedrmitre-attacksecuritysecurity-toolsthreat-huntingwindows

olafhartong/ThreatHunting

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

1.2k179Updated 3 days ago

dfirmitre-attacksplunkthreat-hunting

edoardogerosa/sentinel-attack

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

1.1k204Updated 2 weeks ago

azureazure-sentinelblue-teamcybersecuritydetectionkqlloggingmitre-attacksecurity-toolssiemsysmonsysmon-configterraform-azurethreat-huntingworkbooks

mikeroyal/Open-Source-Security-Guide

Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

Go1.1k97Updated 2 days ago

compliancecyber-securitydetection-engineeringforensics-toolsincident-managementincident-responseinformation-securityinfosecintrusion-detectionkali-linuxmitre-attacknetwork-analysisoffensive-securitypentestersprivacy-protectionscanning-toolsiemsurveillancevulnerabilitiesvulnerability-detection

nshalabi/ATTACK-Tools

Utilities for MITRE™ ATT&CK

HTML1.1k215Updated 2 weeks ago

adversary-emulationmitremitre-attackredteamredteaming

atc-project/atomic-threat-coverage

Actionable analytics designed to combat threats

Python1.0k158Updated 2 days ago

incidentresponsemitre-attackthreat-modelthreatdetectionthreathuntingthreatintelligence

DataDog/KubeHound

Tool for building Kubernetes attack paths

Go94862Updated 6 hours ago

adversary-emulationattack-graphattack-pathscloud-native-securityexploitkuberneteskubernetes-securitymitre-attackpurple-teamred-teamsecurity-auditsecurity-automationsecurity-tools

SlimKQL/Hunting-Queries-Detection-Rules

KQL Queries. Microsoft Defender, Microsoft Sentinel

JavaScript834150Updated 1 day ago

azuredefenderdefenderxdrkqlmicrosoftmitre-attacksentinelthreatdetectionthreathunting

bfuzzy/auditd-attack

A Linux Auditd rule set mapped to MITRE's Attack Framework

822132Updated 1 week ago

attack-detectionauditdlinuxmitre-attackthreat-hunting

center-for-threat-informed-defense/attack-flow

Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows.

TypeScript719119Updated 4 days ago

ctidcyber-threat-intelligencecybersecuritymitre-attackthreat-informed-defense

mitre-attack/mitreattack-python

A python module for working with ATT&CK

HTML673160Updated 12 hours ago

cticyber-threat-intelligencecybersecuritymitre-attackmitre-corporationpython

atc-project/atc-react

A knowledge base of actionable Incident Response techniques

Python662121Updated 1 month ago

amittdfirincident-responsemitre-attackresponse-playbooksthehive

mdecrevoisier/EVTX-to-MITRE-Attack

Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.