mitre

Small and highly portable detection tests based on MITRE's ATT&CK.

Scalable Automated Adversary Emulation Platform

A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.

Utilities for MITRE™ ATT&CK

GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]

A PowerShell script to interact with the MITRE ATT&CK Framework via its own API

Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.

Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads

A more flexible & useful att&ck client

A social experiment

attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage

This tool maps a file's behavior on MITRE ATT&CK matrix.

Collection of sick.codes security research & advisories.

🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)

A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.

A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST

A simple, fully python ransomware PoC using AES-CTR and RSA. Supports Windows, Linux and macOS

MITRE package gives you an approach to cybersecurity data sets.

Library of threat hunts to get any user started!

Actionable analytics designed to combat threats based on MITRE's ATT&CK.

A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

Security R package with a set of utils to analyse the different industry standards (MITRE and NIST).

Repository for the Deprecated MITRE Capture the Flag scoreboard.

Parsing MITRE EDR Evaluation results

This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.

MITRE Evaluations Database

Mitre Framework Based Quantitative Risk Simulation

Zénith is a multi-lingual cybersecurity AI NLP chatbot in development that references the MITRE ATT&CK Framework, OSCP solution guides, and current cyberops TTP. Zenith is designed to source information from open-source intelligence platforms to relay situationally relevant intelligence and achieve cyber objectives through automated processes.

A list of useful Detection Engineering-related resources.

Get all cve corresponding to a specific keyword or a list of keywords from the mitre database (https://cve.mitre.org/)