Automated Adversary Emulation Platform
OpenCTI Connectors
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
Actionable analytics designed to combat threats
Scripts and a (future) library to improve users' interactions with the ATT&CK content
A knowledge base of actionable Incident Response techniques
A python module for working with ATT&CK
🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.
Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
A simple, fully python ransomware PoC using AES-CTR and RSA. Supports Windows, Linux and macOS
attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.
MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
MITRE ATT&CK in CSV form
The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders in the IT environment. It will establish an Insider Threat TTP Knowledge Base, built upon data collected on insider threat incidents and lessons learned and experience from the ATT&CK knowledge base.
Halberd : Multi-Cloud Attack Tool
AWSATT&CK adds MITRE ATT&CK context and additional logging capabilities to Rhino Security Labs's open-source AWS exploitation framework, Pacu.
Tool to predict attacker groups from the techniques and software used
Add a description, image, and links to the mitre-attack topic page so that developers can more easily learn about it.
To associate your repository with the mitre-attack topic, visit your repo's landing page and select "manage topics."