My personal analysis of leaked Conti "pentest" manuals mapped to MITRE ATT&CK Enterprise with AtomicRedTeam tests and Sigma rules coverage mapped.

The original leak can be found on VX-Undergrounds. Some files there violate Github ToS, if you want to browse just the text manuals visit ForbiddenProgrammer/conti-pentester-guide-leak

• Google Sheet
• ATT&CK Enterprise Navigator layer

🟥 - Conti technique not covered

🟨 - Technique covered by AtomicRedTeam

🟦 - Technique covered by Sigma

🟩 - Technique covered by AtomicRedTeam + Sigma