There are 19 repositories under mitre topic.
Small and highly portable detection tests based on MITRE's ATT&CK.
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
Utilities for MITRE™ ATT&CK
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads
MITRE Caldera™ for OT Plugins & Capabilities
attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
A simple, fully python ransomware PoC using AES-CTR and RSA. Supports Windows, Linux and macOS
🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)
Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST
uCVE is a tool written in GO that allows to extract CVE's related to a specific software and version, obtaining a report in HTML format with the result and/or exporting it to the pentesting report.
Library of threat hunts to get any user started!
A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
An elevated STIX representation of the MITRE ATT&CK Groups knowledge base
Easy to extend initial access scenario to help with EDR testing on Linux and Mac
Actionable analytics designed to combat threats based on MITRE's ATT&CK.
MITRE package gives you an approach to cybersecurity data sets.
CYBERSEC - A Cybersecurity Discord Bot
Repository for the Deprecated MITRE Capture the Flag scoreboard.
Security R package with a set of utils to analyse the different industry standards (MITRE and NIST).