adversary-emulation
There are 48 repositories under adversary-emulation topic.
guardicore/monkey
Infection Monkey - An open-source adversary emulation platform
mitre/caldera
Automated Adversary Emulation Platform
DataDog/stratus-red-team
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
center-for-threat-informed-defense/adversary_emulation_library
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
nshalabi/ATTACK-Tools
Utilities for MITRE™ ATT&CK
DataDog/KubeHound
Tool for building Kubernetes attack paths
ch33r10/EnterprisePurpleTeaming
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
vectra-ai-research/MAAD-AF
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
f1zm0/hades
Go shellcode loader that combines multiple evasion techniques
f1zm0/acheron
indirect syscalls for AV/EDR evasion in Go assembly
mitre/caldera-ot
MITRE Caldera™ for OT Plugins & Capabilities
password-reset/Invoke-Apex
A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.
center-for-threat-informed-defense/caldera_pathfinder
Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translating those scans into adversaries for network traversal.
Ixve/Red-Team-Tools
Repo containing cracked red teaming tools.
maddev-engenuity/AdversaryEmulation
MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
jwillyamz/ezEmu
See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
Sam0x90/CTI
Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
pygrum/monarch
Monarch - The Adversary Emulation Toolkit
MythicStack/Python-Security-Tool-Database
Solid Python toolkit for those in the security industry. Some by me, most by smarter people.
ssnkhan/adversarial-threat-modelling
Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop
Manticore-Platform/manticore-cli
Manticore Adversary Emulation Cli
NVISOsecurity/cyber-security-llm-agents
A collection of agents that use Large Language Models (LLMs) to perform tasks common on our day to day jobs in cyber security.
VVX7/nicodemus
A cross-platform Nim implant for Prelude Operator
mitre/emu
This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense
hideckies/hermit
A command and control framework.
attackevals/ael
ATT&CK Evaluations Library
TartarusLabs/Coyote
Coyote is a standalone C# post-exploitation implant for maintaining access to compromised Windows infrastructure during red team engagements using DNS tunneling.
AutomoxSecurity/iShelly
A tool to generate macOS initial access vectors using Prelude Operator payloads
mehgrmlhmpf/AttackGraphGeneratorMasterThesis
This work shows the viability of automatically generated attack graphs that are used for adversary behavior execution in industrial control system environments. This viability is evaluated and confirmed with expert interviews about results of this thesis, generated attack graphs and an implemented prototype.
TartarusLabs/Expeditus
Expeditus is a loader that executes shellcode on a target Windows system. It combines several offensive techniques in order to attempt to do this with some level of stealth.
center-for-threat-informed-defense/m3tid
The Measure, Maximize, and Mature Threat-Informed Defense (M3TID) project defines what Threat-Informed Defense (TID) is and the key activities associated with its practice.
Manticore-Platform/public-threats
Manticore's Public Threats Repository
hckops/hckctl
The Security Automation Toolkit
Manticore-Platform/public-scenarios
Manticore's Public Threat Scenarios
EmilioPanti/worm
A CALDERA plugin
VVX7/OperatorAPI
An REST API client library for Prelude Operator.