The Atomic Playbook contains TTPs from the MITRE ATT&CK framework mapped to the tests in the Atomic Red Team. It serves as a single resource to know about the tests, it's execution, detection and defense techniques from MITRE Shield.
☆34Jun 19, 2025Updated 8 months ago
Alternatives and similar repositories for TheAtomicPlaybook
Users that are interested in TheAtomicPlaybook are comparing it to the libraries listed below
Sorting:
- Loading and executing shellcode in C# without PInvoke.☆22Jan 10, 2022Updated 4 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Mar 7, 2023Updated 2 years ago
- My personal collection of webshells for educational purposes. Most are custom implementations/adaptations of stuff I found on the interne…☆21May 20, 2024Updated last year
- ⚔️MITRE ATT&CK Machinations in R☆23Aug 11, 2020Updated 5 years ago
- A quick reference script that can easily display reverse shells for different languages.☆20May 28, 2020Updated 5 years ago
- Execute Mimikatz with different technique☆51Nov 8, 2021Updated 4 years ago
- Blog/Journal on how to backdoor VSCode extensions☆77Feb 24, 2026Updated last week
- ☆48Oct 14, 2025Updated 4 months ago
- Automatic detection engineering technical state compliance☆55Jul 7, 2024Updated last year
- ☆48Jun 6, 2025Updated 8 months ago
- A red teaming attack paradigm against AI Agents☆32Mar 9, 2025Updated 11 months ago
- This program generates cyber attack scenarios for use in cyber training exercises, red team planning, blue team planning, automated attac…☆33Apr 15, 2021Updated 4 years ago
- ☆28Mar 29, 2022Updated 3 years ago
- Fully functional & encrypted chat-application.☆11Mar 28, 2024Updated last year
- Parser and reconciliation tooling for large Active Directory environments.☆33Feb 18, 2025Updated last year
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆36Jan 20, 2022Updated 4 years ago
- Take domains on stdin and output them on stdout if they get resolved☆32May 27, 2022Updated 3 years ago
- You and the AppleLabs' Incident Response Team have been notified of a potential breach to a Human Resources' workstation. According to th…☆77Dec 2, 2021Updated 4 years ago
- A little bit less hackish way to intercept and modify non-HTTP protocols through Burp & others.☆217Apr 26, 2022Updated 3 years ago
- Mapping NSM rules to MITRE ATT&CK☆73Aug 29, 2020Updated 5 years ago
- Just another vulnerable web application.☆36Jul 27, 2024Updated last year
- The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage☆25Aug 12, 2019Updated 6 years ago
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆35Sep 23, 2022Updated 3 years ago
- Kerberoast Detection Script☆30Oct 31, 2024Updated last year
- Secure NotebookLM MCP Server - Query Google NotebookLM from Claude/AI agents with 14 security hardening layers☆33Feb 25, 2026Updated last week
- # hpro This is a python base script from which you can hack or clone any person's facebook friendlist or followers accounts which have …☆11May 9, 2021Updated 4 years ago
- Fast offline auditing of Active Directory passwords using Python.☆166Aug 14, 2024Updated last year
- Query user sessions for the entire domain (Interactive/RDP etc), allowing you to query a Username and see all their logged on sessions, w…☆93Mar 22, 2025Updated 11 months ago
- A PowerShell incident response script for quick triage☆81Jul 18, 2022Updated 3 years ago
- Patches the AmsiScan function in clr.dll allowing for unrestricted assembly loading in .NET☆51May 5, 2025Updated 10 months ago
- ☆44Jan 22, 2026Updated last month
- An HTA Application which builds Azure (Entra) Scenarios for Red Team Simulations☆61Aug 18, 2025Updated 6 months ago
- A tool/library to proxify DLL☆38Apr 10, 2022Updated 3 years ago
- This is a PoC using native windows API directx, to hide and decrypt shellcode via compute shader☆10May 3, 2025Updated 10 months ago
- ATL.dll and WmiMgmt.msc UAC Bypass☆12Apr 26, 2025Updated 10 months ago
- Script to output Azure IAM permissions and flag any explicit/owner permissions for review☆10May 18, 2020Updated 5 years ago
- WinDbg plugin to trace module transitions from a debugged driver.☆40Dec 22, 2025Updated 2 months ago
- ☆10Oct 22, 2017Updated 8 years ago
- Supercharged USB bootloader for various PIC24/dsPIC33 MCUs.☆11Jul 8, 2021Updated 4 years ago