Skip to content

Navigation Menu

center-for-threat-informed-defense

Explore
For
- Enterprise
- Teams
- Startups
- Education
By Solution
Resources
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

The Center for Threat-Informed Defense

An R&D organization focused on advancing the state of the art and the state of the practice in threat-informed defense.

887 followers
https://ctid.mitre-engenuity.org/
https://www.linkedin.com/showcase/center-for-threat-informed-defense/
@MITREengenuity
ctid@mitre-engenuity.org

Overview
Repositories
Projects
Packages
People

More

Overview
Repositories
Projects
Packages
People

Pinned

mappings-explorer mappings-explorer Public

Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogued in the MITRE ATT&CK® knowledge base. These mappings form a…

Jinja 15 4
adversary_emulation_library adversary_emulation_library Public

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

C 1.6k 286
attack-flow attack-flow Public

Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flow…

TypeScript 508 82
summiting-the-pyramid summiting-the-pyramid Public

Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research includes a scoring model, methodology, and worked examples.

Makefile 22 2
attack-workbench-frontend attack-workbench-frontend Public

An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository contains an Angular-based web application providing the user in…

TypeScript 288 59
tram tram Public

TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE ATT&CK®.

Jupyter Notebook 398 89

Repositories

Type

Select type

All Public Sources Forks Archived Mirrors Templates

Language

Select language

All C HCL JavaScript Jinja Jupyter Notebook Makefile Python TypeScript

Sort

Select order

Last updated Name Stars

Showing 10 of 26 repositories

top-attack-techniques Public
Top ATT&CK Techniques provides defenders with a systematic approach to prioritizing ATT&CK techniques.

112 Apache-2.0 20 0 5 Updated May 17, 2024
attack-workbench-frontend Public
An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository contains an Angular-based web application providing the user interface for the ATT&CK Workbench application.

TypeScript 288 Apache-2.0 59 42 2 Updated May 13, 2024
attack-flow Public
Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows.

TypeScript 508 Apache-2.0 82 8 0 Updated May 6, 2024
public-resources Public
Collection of resources related to the Center for Threat-Informed Defense

69 16 0 0 Updated May 3, 2024
caldera_pathfinder Public
Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translating those scans into adversaries for network traversal.

Python 118 Apache-2.0 25 2 1 Updated Apr 25, 2024
attack-sync Public
ATT&CK Sync is a Center for Threat-Informed Defense project that aims to improve the ability for organizations to consume MITRE ATT&CK® version updates into their internal systems and processes.

Python 13 Apache-2.0 5 3 0 Updated Apr 24, 2024
attack-powered-suit Public
ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, context menus, and ATT&CK Navigator integration.

JavaScript 66 Apache-2.0 11 2 0 Updated Apr 24, 2024
workshop Public

7 6 1 0 Updated Apr 17, 2024
mappings-explorer Public
Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogued in the MITRE ATT&CK® knowledge base. These mappings form a bridge between the threat-informed approach to cybersecurity and the traditional security controls perspective.

Jinja 15 Apache-2.0 4 0 0 Updated Apr 15, 2024
attack-workbench-rest-api Public
An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository contains the REST API service for storing, querying, and editing ATT&CK objects.

JavaScript 38 Apache-2.0 21 38 6 Updated Apr 12, 2024

View all repositories

People

Top languages

Python TypeScript JavaScript Makefile Jinja

Most used topics

ctid mitre-attack cybersecurity threat-informed-defense cyber-threat-intelligence

Footer

© 2024 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.