Tools discussed during the EU ATT&CK Community Workshops.
CTI
| Name | Link | Owner |
|---|---|---|
| Navigator | https://mitre.github.io/attack-navigator/enterprise/ | MITRE |
| MISP | https://www.misp-project.org | MISP Project |
Detection / Hunting / Blue Teams
| Name | Link | Owner |
|---|---|---|
| SIGMA | https://github.com/Neo23x0/sigma | Florian Roth / Thomas Patzke |
| SIGMA Rules | https://github.com/Neo23x0/sigma/tree/master/rules | Florian Roth |
| BZAR | https://github.com/mitre-attack/bzar | MITRE |
| UNCODER | https://tdm.socprime.com/uncoder-ai | SOC Prime |
| Threathunter Playbook | https://github.com/Cyb3rWard0g/ThreatHunter-Playbook | Roberto Rodriguez |
| RE&CT | https://atc-project.github.io/atc-react/ | ATC Project |
| DETT&CT | https://github.com/rabobank-cdc/DeTTECT | Marcus Bakker / Ruben Bouwman |
| OpenTIDE | https://github.com/OpenTideHQ | European Commission |
Prevention / Red Teams / Testing of Controls
| Name | Link | Owner |
|---|---|---|
| CALDERA | https://github.com/mitre/caldera | MITRE |
| Atomic Red Team | https://github.com/redcanaryco/atomic-red-team | Red Canary |
| SPLUNK ATTACK Range | https://github.com/splunk/attack_range | SPLUNK |
| Purple Crew | https://github.com/Vjeroen/PurpleCrew | Jeroen Vandeleur |