All

33 repositories

atomic-red-team
Public
Small and highly portable detection tests based on MITRE's ATT&CK.
mitre mitre-attack
mitre mitre-attack
C
•
MIT License
•3.1k•12k•1•6•Updated May 12, 2026May 12, 2026
vscode-attack
Public
Visual Studio Code extension for MITRE ATT&CK
TypeScript
•
BSD 3-Clause "New" or "Revised" License
•10•56•5•4•Updated May 1, 2026May 1, 2026
dependabot-configurator
Public
An easy tool to automatically optimize and maintain Dependabot configurations
Python
•
BSD 3-Clause "New" or "Revised" License
•0•8•0•3•Updated Apr 27, 2026Apr 27, 2026
helm-charts
Public
Red Canary's Public Helm Chart Repository
Go Template
•
BSD 3-Clause "New" or "Revised" License
•1•1•0•0•Updated Apr 20, 2026Apr 20, 2026
redcanary-ebpf-sensor
Public
Red Canary's eBPF Sensor
sensor ebpf edr-solutions
sensor ebpf edr-solutions
C
•
GNU General Public License v2.0
•16•115•0•0•Updated Apr 15, 2026Apr 15, 2026
red-canary-aws-resource-discovery
Public
Go
•
BSD 3-Clause "New" or "Revised" License
•4•1•0•2•Updated Apr 8, 2026Apr 8, 2026
ebpfmon
Public
Go
•
BSD 3-Clause "New" or "Revised" License
•4•91•0•1•Updated Dec 5, 2025Dec 5, 2025
osquery-forensics-agent
Public
SecTor - Not-So-Secret Agents: Deploying AI to Optimize Security Operations
Python
•
Other
•4•40•0•0•Updated Oct 15, 2025Oct 15, 2025
invoke-atomicredteam
Public
Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomi…
PowerShell
•
MIT License
•247•1k•9•2•Updated Sep 8, 2025Sep 8, 2025
chain-reactor
Public
Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
linux security elf
linux security elf mitre security-testing mitre-attack adversary-simulation
C
•
MIT License
•38•340•3•2•Updated Apr 8, 2025Apr 8, 2025
AtomicTestHarnesses
Public
Public Repo for Atomic Test Harness
PowerShell
•
BSD 3-Clause "New" or "Revised" License
•49•285•1•2•Updated Apr 8, 2025Apr 8, 2025
surveyor
Public
A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
Python
•
MIT License
•71•269•10•7•Updated Mar 31, 2025Mar 31, 2025
redcanary-response-utils
Public
Tools to automate and/or expedite response.
security-tools edr
security-tools edr
Python
•
MIT License
•33•116•6•1•Updated Jul 5, 2024Jul 5, 2024
ansible-atomic-red-team
Public
This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam
Shell
•
MIT License
•3•27•0•2•Updated Jul 4, 2024Jul 4, 2024
gh-action-publish-gem-on-tag
Public
A Github action for publishing to the package registry on tag pushes
Shell
•6•1•0•0•Updated Jul 4, 2024Jul 4, 2024
rtlshtree
Public
C++
•
BSD 3-Clause "New" or "Revised" License
•2•3•0•0•Updated Jul 4, 2024Jul 4, 2024
openapi
Public
Public API clients for connecting to the Red Canary APIs
Python
•
MIT License
•6•8•0•3•Updated Jul 4, 2024Jul 4, 2024
exploit-primitive-playground
Public
C
•
MIT License
•14•65•0•0•Updated Jul 3, 2024Jul 3, 2024
oxidebpf
Public archive
A Rust library for managing eBPF programs.
ebpf rust-crate
ebpf rust-crate
Rust
•
BSD 3-Clause "New" or "Revised" License
•13•122•0•0•Updated Feb 26, 2024Feb 26, 2024
homebrew-cask
Public
A CLI workflow for the administration of macOS applications distributed as binaries
Ruby
•
BSD 2-Clause "Simplified" License
•12k•0•0•0•Updated Jun 30, 2023Jun 30, 2023
timescale
Public archive
The timescaledb gem. Pack of helpers to work with TimescaleDB extension in Ruby.
Ruby
•
MIT License
•28•0•0•1•Updated Jan 18, 2023Jan 18, 2023
Azure-Sentinel
Public archive
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
Jupyter Notebook
•
MIT License
•3.6k•8•0•15•Updated Aug 23, 2022Aug 23, 2022
protobuf
Public archive
Protocol Buffers - Google's data interchange format
C++
•
Other
•16k•1•0•2•Updated May 13, 2022May 13, 2022
cbconnect-2019
Public archive
Ruby
•2•7•0•3•Updated Apr 4, 2022Apr 4, 2022
cb-event-forwarder
Public archive
Subscribe to raw Carbon Black event feed and forward to another system, such as Splunk, etc.
JavaScript
•
Other
•45•8•0•1•Updated Feb 17, 2021Feb 17, 2021
public-research
Public archive
Public repository for Red Canary Research
security security-research
security security-research
C
•
MIT License
•10•38•0•0•Updated Oct 29, 2020Oct 29, 2020
zendesk_api_client_rb
Public archive
Official Ruby Zendesk API Client
Ruby
•
Apache License 2.0
•181•4•0•0•Updated Aug 31, 2020Aug 31, 2020
wwhf
Public archive
Exercises for C# Workshop at Wild West Hackin' Fest 2018 & 2019.
HTML
•20•64•0•0•Updated Oct 28, 2019Oct 28, 2019
cb-response-smb1-utility
Public archive
A simple utility to check the status of and/or disable SMBv1 on Windows system via Cb Response's Live Response functionality.
Python
•
MIT License
•6•15•1•0•Updated May 28, 2019May 28, 2019
activerecord5-redshift-adapter
Public archive
Ruby
•
Other
•163•1•0•0•Updated May 22, 2019May 22, 2019

ProTip! When viewing an organization's repositories, you can use the props. filter to filter by custom property.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Red Canary, a Zscaler company

All

All

33 repositories

atomic-red-team

vscode-attack

dependabot-configurator

helm-charts

redcanary-ebpf-sensor

red-canary-aws-resource-discovery

ebpfmon

osquery-forensics-agent

invoke-atomicredteam

chain-reactor

AtomicTestHarnesses

surveyor

redcanary-response-utils

ansible-atomic-red-team

gh-action-publish-gem-on-tag

rtlshtree

openapi

exploit-primitive-playground

oxidebpf

homebrew-cask

timescale

Azure-Sentinel

protobuf

cbconnect-2019

cb-event-forwarder

public-research

zendesk_api_client_rb

wwhf

cb-response-smb1-utility

activerecord5-redshift-adapter

All

All

Repositories list

33 repositories