adversary-emulation

There are 48 repositories under adversary-emulation topic.

guardicore/monkey
Infection Monkey - An open-source adversary emulation platform
Language:Python6.6k 241 1.5k775
mitre/caldera
Automated Adversary Emulation Platform
Language:Python5.5k 167 7541.1k
DataDog/stratus-red-team
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
Language:Go1.8k 36 184205
center-for-threat-informed-defense/adversary_emulation_library
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
Language:C1.7k 142 71307
nshalabi/ATTACK-Tools
Utilities for MITRE™ ATT&CK
Language:HTML1k 73 9213
DataDog/KubeHound
Tool for building Kubernetes attack paths
Language:Go750 15 3041
ch33r10/EnterprisePurpleTeaming
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
638 25 396
vectra-ai-research/MAAD-AF
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
Language:PowerShell351 14 453
f1zm0/hades
Go shellcode loader that combines multiple evasion techniques
Language:Go337 7 146
f1zm0/acheron
indirect syscalls for AV/EDR evasion in Go assembly
Language:Assembly303 6 333
mitre/caldera-ot
MITRE Caldera™ for OT Plugins & Capabilities
188 26 123
password-reset/Invoke-Apex
A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.
Language:PowerShell182 8 036
center-for-threat-informed-defense/caldera_pathfinder
Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translating those scans into adversaries for network traversal.
Language:Python121 72 1826
Ixve/Red-Team-Tools
Repo containing cracked red teaming tools.
Language:Batchfile112 5 227
maddev-engenuity/AdversaryEmulation
MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
Language:Python105 5 2320
jwillyamz/ezEmu
See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
Language:C#102 9 110
Sam0x90/CTI
Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
Language:PowerShell81 2 05
pygrum/monarch
Monarch - The Adversary Emulation Toolkit
Language:Go57 1 05
MythicStack/Python-Security-Tool-Database
Solid Python toolkit for those in the security industry. Some by me, most by smarter people.
55 2 04
ssnkhan/adversarial-threat-modelling
Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop
50 5 06
Manticore-Platform/manticore-cli
Manticore Adversary Emulation Cli
Language:Go46 2 02
NVISOsecurity/cyber-security-llm-agents
A collection of agents that use Large Language Models (LLMs) to perform tasks common on our day to day jobs in cyber security.
Language:Jupyter Notebook39 3 03
VVX7/nicodemus
A cross-platform Nim implant for Prelude Operator
Language:Nim32 2 36
mitre/emu
This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense
Language:Python29 20 89
hideckies/hermit
A command and control framework.
Language:C++27 2 48
attackevals/ael
ATT&CK Evaluations Library
Language:C25 2 03
TartarusLabs/Coyote
Coyote is a standalone C# post-exploitation implant for maintaining access to compromised Windows infrastructure during red team engagements using DNS tunneling.
Language:C#19 1 01
AutomoxSecurity/iShelly
A tool to generate macOS initial access vectors using Prelude Operator payloads
Language:Python17 0 02
mehgrmlhmpf/AttackGraphGeneratorMasterThesis
This work shows the viability of automatically generated attack graphs that are used for adversary behavior execution in industrial control system environments. This viability is evaluated and confirmed with expert interviews about results of this thesis, generated attack graphs and an implemented prototype.
11 2 14
TartarusLabs/Expeditus
Expeditus is a loader that executes shellcode on a target Windows system. It combines several offensive techniques in order to attempt to do this with some level of stealth.
Language:C#11 1 12
center-for-threat-informed-defense/m3tid
The Measure, Maximize, and Mature Threat-Informed Defense (M3TID) project defines what Threat-Informed Defense (TID) is and the key activities associated with its practice.
Language:Makefile10 51 02
Manticore-Platform/public-threats
Manticore's Public Threats Repository
10 3 01
hckops/hckctl
The Security Automation Toolkit
Language:Go8 1 30
Manticore-Platform/public-scenarios
Manticore's Public Threat Scenarios
6 2 02
EmilioPanti/worm
A CALDERA plugin
Language:JavaScript3 2 13
VVX7/OperatorAPI
An REST API client library for Prelude Operator.
Language:Nim3 1 00

adversary-emulation

guardicore/monkey

mitre/caldera

DataDog/stratus-red-team

center-for-threat-informed-defense/adversary_emulation_library

nshalabi/ATTACK-Tools

DataDog/KubeHound

ch33r10/EnterprisePurpleTeaming

vectra-ai-research/MAAD-AF

f1zm0/hades

f1zm0/acheron

mitre/caldera-ot

password-reset/Invoke-Apex

center-for-threat-informed-defense/caldera_pathfinder

Ixve/Red-Team-Tools

maddev-engenuity/AdversaryEmulation

jwillyamz/ezEmu

Sam0x90/CTI

pygrum/monarch

MythicStack/Python-Security-Tool-Database

ssnkhan/adversarial-threat-modelling

Manticore-Platform/manticore-cli

NVISOsecurity/cyber-security-llm-agents

VVX7/nicodemus

mitre/emu

hideckies/hermit

attackevals/ael

TartarusLabs/Coyote

AutomoxSecurity/iShelly

mehgrmlhmpf/AttackGraphGeneratorMasterThesis

TartarusLabs/Expeditus

center-for-threat-informed-defense/m3tid

Manticore-Platform/public-threats

hckops/hckctl

Manticore-Platform/public-scenarios

EmilioPanti/worm

VVX7/OperatorAPI