AttackIQ
AttackIQ is a platform that provides breach and attack simulation products for security control validation. The platform emulates adversary tactics, techniques, and procedures, aligned to the MITRE ATT&CK framework, and offers visibility into security program performance with data-driven analysis and mitigation guidance. AttackIQ offers three different products: Enterprise, Ready!, and Flex. Enterprise is a co-managed service for mature security organizations, allowing them to test their controls whenever they want with advanced intelligence. Ready! is a fully managed breach and attack simulation service for small and medium-sized businesses that lack the personnel to run a continuous security validation program. Flex is a test-as-a-service option for organizations that want to run spot checks or ad-hoc testing without a license. The platform aims to help organizations proactively measure the effectiveness of their security controls and fine-tune them to keep up with the evolving threat landscape, ultimately reducing the cost of breaches and improving security operations efficiency
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
An IOC tracker written in Python that queries Google Custom Search Engines for various cybersecurity indicators and monitors domain status using Google Safe Browsing APIs.
A framework for managing cyber threat intelligence in structured formats.
The Cybersecurity and Infrastructure Security Agency (CISA) is a government agency that provides alerts, advisories, and resources to help protect the United States' critical infrastructure from cyber threats.
The Trystero Project is a threat intelligence platform that measures email security efficacy and provides various tools and resources, while VMware Carbon Black offers endpoint protection and workload security solutions.
Threat hunting tool leveraging Windows events for identifying outliers and suspicious behavior.
A community-driven public malware repository providing access to malware samples, tools, and resources for the cybersecurity community.
A project sharing malicious URLs used for malware distribution to help protect networks.
A free and open-source OSINT framework for gathering and analyzing data from various sources
FraudGuard is a service that provides real-time internet traffic analysis and IP tracking to help validate usage and prevent fraud.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.