Skip to main content

Resources

MITRE Frameworks

CTI

NameLinkOwner
Navigatorhttps://mitre.github.io/attack-navigator/enterprise/MITRE
CARhttps://car.mitre.org/wiki/Main_PageMITRE
AMITThttps://github.com/misinfosecproject/amitt_framework
MISPhttps://www.misp-project.orgMISP Project

Detection / Hunting / Blue Teams

NameLinkOwner
SIGMAhttps://github.com/Neo23x0/sigmaFlorian Roth / Thomas Patzke
SIGMA Ruleshttps://github.com/Neo23x0/sigma/tree/master/rulesFlorian Roth
OSCD Communityhttps://oscd.community
BZARhttps://github.com/mitre-attack/bzarMITRE
SIGMA Editorhttps://tdm.socprime.com/sigma/generate/SOCPRIME
UNCODERhttps://uncoder.io/SOCPRIME
Threathunter Playbookhttps://github.com/Cyb3rWard0g/ThreatHunter-PlaybookRoberto Rodriguez
ThreatHunting Apphttps://github.com/olafhartong/ThreatHuntingOlaf Hartong
Atomic Threat Coveragehttps://github.com/atc-project/atomic-threat-coverageATC Project
RE&CThttps://atc-project.github.io/atc-react/ATC Project
DETT&CThttps://github.com/rabobank-cdc/DeTTECTMarcus Bakker / Ruben Bouwman
attack2jirahttps://github.com/mvelazc0/attack2jiraMauricio Velazco

Prevention / Purple-Red Teams / Testing of Controls

NameLinkOwner
CALDERAhttps://github.com/mitre/calderaMITRE
Atomic Red Teamhttps://github.com/redcanaryco/atomic-red-teamRed Canary
SPLUNK ATTACK Rangehttps://github.com/splunk/attack_rangeSPLUNK
MORDORhttps://mordordatasets.com/introduction.htmlRoberto Rodriguez
PurpleSharphttps://github.com/mvelazc0/PurpleSharpMauricio Velazco
VECTRhttps://github.com/SecurityRiskAdvisors/VECTRSecurity Risk Advisors

Unclassified