ttp
A collection of sources of documentation, as well as field best practices, to build/run a SOC
A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
This repository contains cutting-edge open-source security notes and tools that will help you during your Red Team assessments.
Repository created to share information about tactics, techniques and procedures used by threat actors. Initially with ransomware groups and evolving to other types of threats.
Halberd : Multi-Cloud Agentic Attack Tool
This repository contains indicators of compromise (IOCs) of our various investigations.
Generate MITRE ATT&CK and D3FEND from a list of CVEs. Database with CVE, CWE, CAPEC, MITRE ATT&CK and D3FEND Techniques data is updated daily. Showcased at BlackHat Europe 2025 Arsenal.
A collection of intelligence about Log4Shell and its exploitation activity.
A python app to predict Att&ck tactics and techniques from cyber threat reports
Adversary emulation for EDR/SIEM testing (macOS/Linux)
PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
This central repository is crafted for cybersecurity enthusiasts, researchers, and professionals aiming to advance their skills. It offers valuable resources for those focused on analyzing and underst...
A collection of commands, tools, techniques and procedures of the purplestorm ctf team.
Parsing some nokia SROS show outputs using ttp
Use the Prowl API to obtain IP Reputation, Techniques Tactics and Procedures, Indicators of Attacks and Indicators of Compromise related to a public IP.
- Website
- Wikipedia