Adversary Emulation Framework

PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments

Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.

XENA is Corss-Platform Software for Cyber-Security Automation, Adversary Simulations, and Red Team Operations. XENA strives to be fully integrated security penetration testing framework. It is equipped with a post-exploitation agent, C2 server, and a dark-themed elegant user interface.

Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.

Collection of OPSEC Tradecraft and TTPs for Red Team Operations

Repo containing cracked red teaming tools.

Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).

A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.

This lightweight C# demo application showcases interactive remote shell access via named pipes and the SMB protocol.

PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpose of generating attack telemetry in properly monitored Windows enterprise environments

Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop

M365/Azure adversary simulation tool designed to simulate adversary techniques and generate attack telemetry.

فایل ها و فیلم های ورکشاپ ردتیم 2024 با هانت لرن

Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on

Solid Python toolkit for those in the security industry. Some by me, most by smarter people.

Computer Network Exploitation (CNE) Field Manual

A post-exploitation toolkit to simulate the weaponization and detection of native Windows binaries based on LOLBas framework.

PurpleSharpEnhanced is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments

AtomicThreatProfile is a Python script that creates custom adversary profiles for use in Caldera using json formatted data from Control Validation Compass