cmu-sei / CDASLinks
This program generates cyber attack scenarios for use in cyber training exercises, red team planning, blue team planning, automated attack execution, and cybersecurity policy analysis.
☆30Updated 4 years ago
Alternatives and similar repositories for CDAS
Users that are interested in CDAS are comparing it to the libraries listed below
Sorting:
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- This tool maps a file's behavior on MITRE ATT&CK matrix.☆59Updated 5 years ago
- Graph Representation of MITRE ATT&CK's CTI data☆49Updated 5 years ago
- Repository of resources for configuring a Red Team SIEM using Elastic☆101Updated 7 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated 2 years ago
- A CALDERA plugin for ATT&CK Evaluations Round 1☆33Updated 2 years ago
- Threat Mapping Catalogue☆18Updated 4 years ago
- Windows GUI/Execution Engine for Atomic Red Team Atomics☆35Updated 5 years ago
- Automatic detection engineering technical state compliance☆55Updated last year
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆103Updated 3 months ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆87Updated 3 years ago
- A CALDERA plugin☆79Updated 2 weeks ago
- Columbo is a computer forensic analysis tool used to simplify and identify specific patterns in compromised datasets.☆62Updated 3 years ago
- Import Mitre Att&ck into Neo4j database☆37Updated 2 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- Collection of YARA signatures from individual research☆46Updated last year
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆40Updated 9 months ago
- ATT&CK Evaluations website (DEPRECATED)☆60Updated 4 years ago
- All necessary code in order to feed Sysmon data into Recurrent Neural Network☆17Updated 5 years ago
- This is a repository that is meant to hold detections for various process injection techniques.☆34Updated 5 years ago
- Cybersecurity Incidents Mind Maps☆34Updated 4 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 3 years ago
- ☆44Updated 3 months ago
- Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine☆22Updated 10 months ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆37Updated 3 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 5 years ago
- ☆28Updated 4 years ago
- Carbon Black Response IR tool☆55Updated 4 years ago
- ☆41Updated 3 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago