Evals is a framework for evaluating LLMs and LLM systems, and an open-source registry of benchmarks.

INF99X: Sample Course (Sample Repository)

cd0428 Javascript & the DOM project repo.

utility for creating log files, designed to help test Fluentd configuration files

CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable reports more consistently and efficiently.

An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository contains an Angular-based web application providing the user in…

Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flow…

Top ATT&CK Techniques provides defenders with a systematic approach to prioritizing ATT&CK techniques.

A methodology for mapping MITRE ATT&CK techniques to vulnerability records to describe the impact of a vulnerability.

An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository contains the REST API and services for managing collections, co…

An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository contains the REST API service for storing, querying, and editin…

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

Malware Configuration And Payload Extraction

The testing framework dedicated to ML models, from tabular to LLMs 🛡️🧑‍🔬

This project aims to fundamentally advance our collective ability to see threat activity across organizational, platform, vendor and geographical boundaries.

This project empowers defenders with independent data on which native security controls of leading technology platforms are most useful in defending against the adversary TTPs they care about.

ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, context menus, and ATT&CK Navigator integration.

ATT&CK Sync is a Center for Threat-Informed Defense project that aims to improve the ability for organizations to consume MITRE ATT&CK® version updates into their internal systems and processes.

Security control framework mappings to MITRE ATT&CK provide a critically important resource for organizations to assess their security control coverage against real-world threats and provide a brid…

A list of public penetration test reports published by several consulting firms and academic security groups.

Sysmon configuration file template with default high-quality event tracing

Examples of using Terraform to deploy Databricks resources

Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as well as a blueprint for how others can create and use cloud an…

TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE ATT&CK®.

HCL is the HashiCorp configuration language.