-
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
C ★ 12k 5d agoExplain → -
invoke-atomicredteam
Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team project.
PowerShell ★ 1.0k 9mo agoExplain → -
chain-reactor
Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
C ★ 341 1y agoExplain → -
AtomicTestHarnesses
Public Repo for Atomic Test Harness
PowerShell ★ 287 1y agoExplain → -
surveyor
A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
Python ★ 270 1y agoExplain → -
oxidebpf ▣
A Rust library for managing eBPF programs.
Rust ★ 122 2y agoExplain → -
redcanary-response-utils
Tools to automate and/or expedite response.
Python ★ 116 1y agoExplain → -
redcanary-ebpf-sensor
Red Canary's eBPF Sensor
C ★ 115 2mo agoExplain → -
ebpfmon
No description.
Go ★ 91 6mo agoExplain → -
exploit-primitive-playground
No description.
C ★ 65 1y agoExplain → -
wwhf ▣
Exercises for C# Workshop at Wild West Hackin' Fest 2018 & 2019.
HTML ★ 64 6y agoExplain → -
vscode-attack
Visual Studio Code extension for MITRE ATT&CK
TypeScript ★ 56 1mo agoExplain → -
osquery-forensics-agent
SecTor - Not-So-Secret Agents: Deploying AI to Optimize Security Operations
Python ★ 43 8mo agoExplain → -
public-research ▣
Public repository for Red Canary Research
C ★ 38 5y agoExplain → -
ansible-atomic-red-team
This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam
Shell ★ 28 1y agoExplain → -
cbapi2 ▣
Red Canary Carbon Black API
Python ★ 20 10y agoExplain → -
cb-response-smb1-utility ▣
A simple utility to check the status of and/or disable SMBv1 on Windows system via Cb Response's Live Response functionality.
Python ★ 15 7y agoExplain → -
dependabot-configurator
An easy tool to automatically optimize and maintain Dependabot configurations
Python ★ 10 26d agoExplain → -
openapi
Public API clients for connecting to the Red Canary APIs
Python ★ 8 1y agoExplain → -
Azure-Sentinel ⑂ ▣
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
Jupyter Notebook ★ 8 3y agoExplain → -
cb-event-forwarder ⑂ ▣
Subscribe to raw Carbon Black event feed and forward to another system, such as Splunk, etc.
JavaScript ★ 8 5y agoExplain → -
cbconnect-2019 ▣
No description.
Ruby ★ 7 4y agoExplain → -
zendesk_api_client_rb ⑂ ▣
Official Ruby Zendesk API Client
Ruby ★ 4 5y agoExplain → -
rtlshtree
No description.
C++ ★ 3 1y agoExplain → -
cbapi-python ⑂ ▣
Carbon Black API - Python language bindings
Python ★ 3 9y agoExplain → -
helm-charts
Red Canary's Public Helm Chart Repository
Go Template ★ 1 2mo agoExplain → -
red-canary-aws-resource-discovery
No description.
Go ★ 1 2mo agoExplain → -
protobuf ⑂ ▣
Protocol Buffers - Google's data interchange format
C++ ★ 1 4y agoExplain → -
client_ruby ⑂ ▣
Prometheus instrumentation library for Ruby applications
Ruby ★ 1 8y agoExplain → -
activerecord5-redshift-adapter ⑂ ▣
No description.
Ruby ★ 1 7y agoExplain → -
gh-action-publish-gem-on-tag ⑂
A Github action for publishing to the package registry on tag pushes
Shell ★ 1 1y agoExplain → -
homebrew-cask ⑂
A CLI workflow for the administration of macOS applications distributed as binaries
Ruby ★ 0 3y agoExplain → -
timescale ⑂ ▣
The timescaledb gem. Pack of helpers to work with TimescaleDB extension in Ruby.
Ruby ★ 0 3y agoExplain →
No repos match these filters.