We have collection of more than 1 Million open source products ranging from Enterprise product to small libraries in all platforms. We aggregate information from all open source repositories. Search and find the best for your needs. Check out projects section.



Displaying 1 to 9 from 9 results

caldera - An automated adversary emulation system

  •    Python

CALDERA is an automated adversary emulation system that performs post-compromise adversarial behavior within Windows Enterprise networks. It generates plans during operation using a planning system and a pre-configured adversary model based on the Adversarial Tactics, Techniques & Common Knowledge (ATT&CK™) project. These features allow CALDERA to dynamically operate over a set of systems using variable behavior, which better represents how human adversaries perform operations than systems that follow prescribed sequences of actions. CALDERA is useful for defenders who want to generate real data that represents how an adversary would typically behave within their networks. Since CALDERA's knowledge about a network is gathered during its operation and is used to drive its use of techniques to reach a goal, defenders can get a glimpse into how the intrinsic security dependencies of their network allow an adversary to be successful. CALDERA is useful for identifying new data sources, creating and refining behavioral-based intrusion detection analytics, testing defenses and security configurations, and generating experience for training.

EVTX-ATTACK-SAMPLES - Windows Events Attack Samples

  •    HTML

N.B: Mapping has been done to the level of ATT&CK technique (not procedure).

atomic-red-team - Small and highly portable detection tests.

  •    PowerShell

Small and highly portable detection tests mapped to the Mitre ATT&CK Framework.Our Atomic Red Team tests are small, highly portable detection tests mapped to the MITRE ATT&CK Framework. Each test is designed to map back to a particular tactic. We hope that this gives defenders a highly actionable way to immediately start testing their defenses against a broad spectrum of attacks.

Shuffle - Shuffle: A general purpose security automation platform

  •    Javascript

Shuffle is an automation platform focused on accessibility. We believe everyone should have access to efficient processes, and are striving to make that a possibility by making integrations for YOUR tools. Security Operations is complex, but it doesn't have to be. Please consider sponsoring the project if you want to see more rapid development.




sysmon-modular - A repository of sysmon configuration modules

  •    PowerShell

This is a Microsoft Sysinternals Sysmon configuration repository, set up modular for easier maintenance and generation of specific configs. Note: I do recommend using a minimal number of configurations within your environment for multiple obvious reasons, like; maintenance, output equality, manageability and so on.

PCAP-ATTACK - PCAP Samples for Different Post Exploitation Techniques

  •    

Container of PCAP captures mapped to the relevant attack tactic.

MalwLess - Test Blue Team detections without running any attack.

  •    CSharp

MalwLess is an open source tool that allows you to simulate system compromise or attack behaviours without running processes or PoCs. The tool is designed to test Blue Team detections and SIEM correlation rules. It provides a framework based on rules that anyone can write, so when a new technique or attack comes out you can write your own rules and share it a with the community. These rules can simulate Sysmon or PowerShell events. MalwLess can parse the rules and write them directly to the Windows EventLog, then you can foward it to your event collector.

macOS-ATTACK-DATASET - JSON DataSet for macOS mapped to MITRE ATT&CK Tactics.

  •    

JSON DATASET for macOS mapped to MITRE ATT&CK Techniques and Tactics recorded using Elastic Endpoint Security for macOS. N.B. for community contributions any forms of logs collection and formats are acceptable (preference for JSON).


Chinese-State-Sponsored-Cyber-Operations-Observed-TTPs - Supporting files for the Chinese State-Sponsored Cyber Operations: Observed TTPs Cybersecurity Advisory

  •    

Chinese state-sponsored cyber actors use a full array of tactics and techniques to exploit computer networks of interest worldwide to acquire sensitive intellectual property, economic, political, and military information. The Joint Cybersecurity Advisory provides information on tactics, techniques, and procedures (TTPs) used by Chinese state-sponsored cyber actors. Alternatively, click this link to view the content directly in the Navigator.

Social Icons

Subscribe to our mailing list





Most Viewed Product

JForum
Asgbookphp - PHP Guestbook Script
Phorum - PHP based forum software
Usebb - UseBB forum software in PHP 4 and 5.3.
Crawltrack - Tracks the visits of Crawler
MyBB - professional,efficient discussion board
Microlinkr - Tiny url generator
Storytlr - Lifestreaming and Microblogging platform written in PHP
Webalizer - fast web server log file analysis
Simple Machines Forum - Elegant, Effective and Powerful

Recently Viewed Product

MySQL - World's most popular open source database
Java SE - Creator of Java
Xtreme Download Manager (XDM) - Powerfull download accelerator and video downloader
Storytlr - Lifestreaming and Microblogging platform written in PHP
ASM - Java bytecode manipulation and analysis framework
BigFish eCommerce - eCommerce and ERP solutions
Red5 - Media Server
Sioyek is a PDF viewer designed for reading research papers and technical books
MyBB - professional,efficient discussion board
JForum

We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.






2018 © findbestopensource.com. Made in India. All trademarks and copyrights are held by respective owners. Advertise  |  About us  |  Privacy Policy  |  Terms of Use  |