347 Open source projects that are alternatives of or similar to mitreattack-python

MITRE Shield website

ATT&CK Evaluations website (DEPRECATED)

STIX data representing MITRE ATT&CK

The principal objectives and outputs of this project are the creation and dissemination of an extension to the VERIS schema incorporating ATT&CK mappings and associated usage documentation.

Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups

Automated Adversary Emulation Platform

CyCAT.org API back-end server including crawlers

OpenCTI connectors

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/cti-stix-generator

OpenCTI Python Client

Shuffle: A general purpose security automation platform platform. We focus on accessibility for all.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

OASIS TC Open Repository: Non-normative schemas and examples for STIX 2

Scripts and a (future) library to improve users' interactions with the ATT&CK content

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

⚔️MITRE ATT&CK Machinations in R

A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

MITRE ATT&CK Website

stix-icons is a collection of colourful and clean icons for use in software, training and marketing material to visualize cyber threats according to the STIX language for intelligence exchange, defined by OASIS Cyber Threat Intelligence (CTI) TC

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators

Security control framework mappings to MITRE ATT&CK provide a critically important resource for organizations to assess their security control coverage against real-world threats and provide a bridge for integrating ATT&CK-based threat information into the risk management process.

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

Web app that provides basic navigation and annotation of ATT&CK matrices

Authors

Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.

See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)

phishEye is an ultimate phishing tool in python. Includes popular websites like Facebook, Twitter, Instagram, LinkedIn, GitHub, Dropbox, and many others. Created with Flask, custom templates, and tunneled with ngrok and localhost.run.

Query compiler for secure multi-party computation.

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

Unofficial WhatCMS API package

In my computer security courses I make extensive usage of cheatsheets for various tools and extra materials to complement the student learning if they are willing to do so. I have decided to share them to enable others to take advantage of them

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Backend logic implementation for Vulnerability Management System

Command line tool for passive reconnaissance, able to gather and link public information to a target domain, company or individual. It can make intelligence gathering faster and more effective by drastically reducing manual user interaction. This is achieved through the engineering of a highly customisable single input to multiple output solutio…

Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations

OSINT Bookmarks for Firefox / Chrome / Edge / Safari

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

A FUSE interface to the NCBI Sequence Read Archive (SRA)

CyberQueens lesson materials - learning resources and exercises for aspiring reverse engineers, exploit developers, and hackers 👩‍💻👨‍💻

Lists of products useful for ICS security

This project empowers defenders with independent data on which native security controls of leading technology platforms are most useful in defending against the adversary TTPs they care about.

These are the notes i have been taking since i started learning about ethical hacking and cybersecurity

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

A collection of some of my scripts

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

个人教学 Wiki

Enumerate information from NTLM authentication enabled web endpoints 🔎

RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.

网络安全 · 攻防对抗 · 蓝队清单，中文版

Hashes of infamous malware

GNU Radio – the Free and Open Software Radio Ecosystem

Git All the Payloads! A collection of web attack payloads.

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..