Skip to content
Change the repository type filter

All

    Repositories list

    • Small and highly portable detection tests based on MITRE's ATT&CK.
      C
      MIT License
      2.8k10k41Updated Dec 24, 2024Dec 24, 2024
    • surveyor

      Public
      A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
      Python
      MIT License
      61188106Updated Dec 23, 2024Dec 23, 2024
    • Go
      BSD 3-Clause "New" or "Revised" License
      0000Updated Dec 19, 2024Dec 19, 2024
    • Red Canary's Public Helm Chart Repository
      Smarty
      BSD 3-Clause "New" or "Revised" License
      1100Updated Nov 26, 2024Nov 26, 2024
    • Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
      C
      MIT License
      3229733Updated Nov 6, 2024Nov 6, 2024
    • Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team project.
      PowerShell
      MIT License
      20186481Updated Oct 28, 2024Oct 28, 2024
    • Red Canary's eBPF Sensor
      C
      GNU General Public License v2.0
      1410100Updated Jul 5, 2024Jul 5, 2024
    • Tools to automate and/or expedite response.
      Python
      MIT License
      3611362Updated Jul 5, 2024Jul 5, 2024
    • This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam
      Shell
      MIT License
      32502Updated Jul 4, 2024Jul 4, 2024
    • Public Repo for Atomic Test Harness
      PowerShell
      BSD 3-Clause "New" or "Revised" License
      4625802Updated Jul 4, 2024Jul 4, 2024
    • A Github action for publishing to the package registry on tag pushes
      Shell
      6100Updated Jul 4, 2024Jul 4, 2024
    • rtlshtree

      Public
      C++
      BSD 3-Clause "New" or "Revised" License
      2300Updated Jul 4, 2024Jul 4, 2024
    • ebpfmon

      Public
      Go
      BSD 3-Clause "New" or "Revised" License
      48500Updated Jul 4, 2024Jul 4, 2024
    • openapi

      Public
      Public API clients for connecting to the Red Canary APIs
      Python
      MIT License
      6703Updated Jul 4, 2024Jul 4, 2024
    • Visual Studio Code extension for MITRE ATT&CK
      TypeScript
      BSD 3-Clause "New" or "Revised" License
      125253Updated Jul 3, 2024Jul 3, 2024
    • Red Canary Mac Monitor is an advanced, stand-alone system monitoring tool tailor-made for macOS security research. Beginning with Endpoint Security (ES), it collects and enriches system events, displaying them graphically, with an expansive feature set designed to reduce noise.
      Swift
      4898290Updated Jul 3, 2024Jul 3, 2024
    • C
      MIT License
      145900Updated Jul 3, 2024Jul 3, 2024
    • oxidebpf

      Public archive
      A Rust library for managing eBPF programs.
      Rust
      BSD 3-Clause "New" or "Revised" License
      1211600Updated Feb 26, 2024Feb 26, 2024
    • 🍻 A CLI workflow for the administration of macOS applications distributed as binaries
      Ruby
      BSD 2-Clause "Simplified" License
      11k000Updated Jun 30, 2023Jun 30, 2023
    • timescale

      Public archive
      The timescaledb gem. Pack of helpers to work with TimescaleDB extension in Ruby.
      Ruby
      MIT License
      20001Updated Jan 18, 2023Jan 18, 2023
    • Azure-Sentinel

      Public archive
      Cloud-native SIEM for intelligent security analytics for your entire enterprise.
      Jupyter Notebook
      MIT License
      3k6015Updated Aug 23, 2022Aug 23, 2022
    • protobuf

      Public archive
      Protocol Buffers - Google's data interchange format
      C++
      Other
      16k102Updated May 13, 2022May 13, 2022
    • cbconnect-2019

      Public archive
      Ruby
      2703Updated Apr 4, 2022Apr 4, 2022
    • cb-event-forwarder

      Public archive
      Subscribe to raw Carbon Black event feed and forward to another system, such as Splunk, etc.
      JavaScript
      Other
      43801Updated Feb 17, 2021Feb 17, 2021
    • public-research

      Public archive
      Public repository for Red Canary Research
      C
      MIT License
      103700Updated Oct 29, 2020Oct 29, 2020
    • zendesk_api_client_rb

      Public archive
      Official Ruby Zendesk API Client
      Ruby
      Apache License 2.0
      183400Updated Aug 31, 2020Aug 31, 2020
    • wwhf

      Public archive
      Exercises for C# Workshop at Wild West Hackin' Fest 2018 & 2019.
      HTML
      206400Updated Oct 28, 2019Oct 28, 2019
    • A simple utility to check the status of and/or disable SMBv1 on Windows system via Cb Response's Live Response functionality.
      Python
      MIT License
      71510Updated May 28, 2019May 28, 2019
    • Ruby
      Other
      156100Updated May 22, 2019May 22, 2019
    • client_ruby

      Public archive
      Prometheus instrumentation library for Ruby applications
      Ruby
      Apache License 2.0
      149100Updated Jun 19, 2018Jun 19, 2018