AWS-Threat-Simulation-and-Detection

Attack simulation tool

This repository documents the simulation and detection of various AWS attack scenarios using Stratus Red Team and SumoLogic for logging and analysis.

Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic

GitHub

282 stars
4 watching
44 forks
last commit: almost 2 years ago

Related projects:

Repository Description Stars
nshalabi/attack-tools Utilities for simulating adversary behavior in the context of threat intelligence and security analysis 1,012
datadog/stratus-red-team Provides a tool to emulate offensive attack techniques in the cloud 1,833
martabyte/red-team-ops A collection of tools and techniques for simulating cyber attacks on computer systems 19
n0dec/malwless A tool designed to simulate system compromise or attack behaviors without running processes or PoCs. 271
sbousseaden/slides Collection of resources and concepts for threat hunting and detection engineering. 372
trustoncloud/threatmodel-for-aws-s3 An inventory of common attack scenarios on Amazon S3 storage and recommended countermeasures 151
stamusnetworks/kts6 Templates for Kibana 6 to visualize and analyze Suricata threat intelligence data 25
infosecn1nja/red-teaming-toolkit A collection of tools to simulate an adversary's actions and test security controls 9,116
sergiomarotco/azure-devops-server-supply-chain-attack-tree An attack tree model for identifying potential security vulnerabilities in an Azure DevOps Server supply chain. 7
securityriskadvisors/vectr A tool for simulating and tracking adversary threats to measure detection and prevention capabilities 1,393
stamusnetworks/kts7 Templates and dashboards for threat hunting with Suricata IDPS/NSM and the ELK 7 stack 39
azure/simuland A collaboration to create realistic test environments for simulating real-world attacks and improving detection strategies. 703
elastic/swat A tool designed to simulate malicious behavior against Google Workspace environments for threat research and detection rule effectiveness testing 161
nccgroup/nccfsas Contains publicly released information on simulated full-spectrum attacks on file systems and security protocols. 606
mvelazc0/purplesharp An adversary simulation tool for Windows environments to generate attack telemetry and improve detection capabilities. 775