341 Open source projects that are alternatives of or similar to attack_to_veris

MITRE Shield website

A python module for working with ATT&CK

ATT&CK Evaluations website (DEPRECATED)

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

Web app that provides basic navigation and annotation of ATT&CK matrices

A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.

Scripts and a (future) library to improve users' interactions with the ATT&CK content

CyCAT.org API back-end server including crawlers

⚔️MITRE ATT&CK Machinations in R

MITRE ATT&CK Website

Automated Adversary Emulation Platform

Shuffle: A general purpose security automation platform platform. We focus on accessibility for all.

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups

STIX data representing MITRE ATT&CK

OpenCTI connectors

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

Security control framework mappings to MITRE ATT&CK provide a critically important resource for organizations to assess their security control coverage against real-world threats and provide a bridge for integrating ATT&CK-based threat information into the risk management process.

Ultimate DevSecOps library

Hashes of infamous malware

Leaked pentesting manuals given to Conti ransomware crooks

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

Search a filesystem for indicators of compromise (IoC).

Monitoring GitHub for sensitive data shared publicly

phishEye is an ultimate phishing tool in python. Includes popular websites like Facebook, Twitter, Instagram, LinkedIn, GitHub, Dropbox, and many others. Created with Flask, custom templates, and tunneled with ngrok and localhost.run.

JerseyCTF 2021

These are the notes i have been taking since i started learning about ethical hacking and cybersecurity

Ethical Hacking Toolkit is a collection of tools, cheat sheets, and resources for Ethical hackers, Penetration Tester, and Security Researchers etc. It contains almost all tools mentioned in CEH, OSCP, eCPPT and PNPT

RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.

Labtainers: A Docker-based cyber lab framework

No description or website provided.

Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.

Automated Deployment of Lab Environments System (ADLES)

Query compiler for secure multi-party computation.

CyTrONE: Integrated Cybersecurity Training Framework

In my computer security courses I make extensive usage of cheatsheets for various tools and extra materials to complement the student learning if they are willing to do so. I have decided to share them to enable others to take advantage of them

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations

Game of Thrones hacking CTF (Capture the flag)

Command line tool for passive reconnaissance, able to gather and link public information to a target domain, company or individual. It can make intelligence gathering faster and more effective by drastically reducing manual user interaction. This is achieved through the engineering of a highly customisable single input to multiple output solutio…

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)

OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/cti-stix-generator

Lists of products useful for ICS security

A collaborative platform for creating, editing and sharing JSON objects.

A curated list of awesome resources related to executable packing

网络安全 · 攻防对抗 · 蓝队清单，中文版

Unofficial WhatCMS API package

This project empowers defenders with independent data on which native security controls of leading technology platforms are most useful in defending against the adversary TTPs they care about.

A collection of some of my scripts

Backend logic implementation for Vulnerability Management System

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

Enumerate information from NTLM authentication enabled web endpoints 🔎

💀 A bash hacking and scanning framework.

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

GNU Radio – the Free and Open Software Radio Ecosystem

Git All the Payloads! A collection of web attack payloads.

CyberQueens lesson materials - learning resources and exercises for aspiring reverse engineers, exploit developers, and hackers 👩‍💻👨‍💻