cmu-sei/Valkyrie_Framework

Stars
3
Rank 3,947,088 (Top 79 %)
Language
Python
License
Other
Created over 1 year ago
Updated over 1 year ago

cmu-sei/Valkyrie_Framework

cmu-sei

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Valkyrie Framework is an open source suite of tools that enable hunt teams to locate and identify hidden cybersecurity threats lurking in network traffic.

pharos

Automated static analysis tools for binary programs

GHOSTS

GHOSTS is a realistic user simulation framework for cyber simulation, training, and exercise

SCALe

SCALe (Source Code Analysis Lab) is a static analysis aggregator/correlator which enables a source code analyst to combine static analysis results from multiple tools into one interface, and also provides mappings for diagnostics from the tools to the SEI CERT Secure Coding standards.

gbtl

GraphBLAS Template Library (GBTL): C++ graph algorithms and primitives using semiring algebra as defined at graphblas.org

kaiju

CERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is a "mirror" -- please file tickets, bug reports, or pull requests at the upstream home in @CERTCC: https://github.com/certcc/kaiju

BigGrep

A scalable search index for binary files

SCADASim

The SCADA Simulator is a configurable system that presents itself as a SCADA system within an exercise environment. It has a web-accessible user interface and generates modbus traffic on the network.

cyobstract

A tool to extract structured cyber information from incident reports.

greybox

A tool to host an Internet simulation

topgen

Scripts to generate an Internet simulation

welled

Wireless adapter emulation

pharos-demangle

Demangles C++ symbol names genarated by Microsoft Visual C++ in order to retrieve the original C++ declarations.

juneberry

Juneberry improves the experience of machine learning experimentation by providing a framework for automating the training, evaluation and comparison of multiple models against multiple datasets, reducing errors and improving reproducibility.

crucible

Crucible is a modular framework for creating, deploying, and managing virtual environments to support training, education, and exercises.

sa-bAbI

sa-bAbI is a software assurance dataset generator similar to the natural language dataset generator

GHOSTS-ANIMATOR

GHOSTS Animator is a library and API for generating realistic NPCs for training and exercise.

CDAS

This program generates cyber attack scenarios for use in cyber training exercises, red team planning, blue team planning, automated attack execution, and cybersecurity policy analysis.

pdfrankenstein

Python tool for bulk PDF feature extraction. This tool is a prototype.

TopoMojo

A simple virtual lab builder/player

finsim

FinSim is a financial simulation tool for exercise environments. It provides students the opportunity to investigate a model financial system and its associated security concerns.

GHOSTS-SPECTRE

SPECTRE enables GHOSTS clients to have and build individual preferences over time.

vtunnel

vTunnel is a tool that proxies IP traffic between guest and host networks.

foundry-appliance

A virtual appliance for building cyber labs, challenges and competitions

TopoMojo-v1

Virtual Lab builder and player

AASPE

A set of modeling tools for security analysis (attack tree, attack impact) and a code generator to produce code for the seL4 platform from AADL models.

eraces

Tools to identify complexity in software models (e.g., SCADE, AADL).

nabu

Graphical analysis of PDF structure.

usersim

An agent that performs user actions on a workstation

cmu-sei.github.io

SEI GitHub landing page.

SCAIFE-API

Source Code Analysis Integrated Framework Environment (SCAIFE) API: YAML specification

Polar

Polar is a secure and scalable knowledge graph framework, designed to address the challenges posed by building big data systems in highly regulated environments, and improve observability for DevSecOps Organizations.

cert-rosecheckers

SEER

SEER is a platform for assessing the performance of cybersecurity training and exercise participants.

bgpuma

An application to search BGP Update files for CIDR blocks or Autonomous Systems.

DRAT

Deployment Recovery Automation Technology

feud

AI Division, Reverse Engineering CNN Trojans

DevSecOps-Model

quabasebd

A wiki knowledge base the links architecture principles to NoSQL product features to support designers of scalable data-intensive systems.

cubespace

Spacefaring cyber competition video game

SilkWeb

topomojo-ui-v1

MORE

Malware driven Overlooked REquirements contains the components SERF SEcurity Requirements Finder and Report Writing application.

augur-code

Augur is a toolset that helps simulate and detect drift in different types of datasets, to define the best metrics that can be used to predict drift before it happens.

Crucible.Appliance

ansible-role-silk

A role to install and configure the SiLK analysis and collection tools.

Stormbox

Stormbox is an "internet user simulator" that is designed to simulate the transient, temporary, and anonymous nature of typical internet users during a cyber wargame.

virtualization-abstraction-layer

The Virtualization Abstraction Layer is a proof-of-concept library to allow projects that rely on hypervisors to easily switch between virtualization technologies.

Identity

Cyber-Ticket-Studio

CTS is a tool that enables users to explore, search, sort, mine, and visualize large numbers of cyber incident tickets (and some other kinds of tickets) at the same time.

Player.Ui

Player is the centralized interface where users, teams, and administrators go to configure and participate in the cyber exercise.

Console.Ui

Console.Ui is a UI application that displays and interacts with VMware virtual machine consoles. The Crucible VM project uses Console.Ui to display virtual machines.

gameboard-ui-v2

Gameboard is a flexible web platform that provides game design capabilities and a competition-ready user interface.

cloud-migration-for-managers

threat-hunting-games

Code in support of SEI 2022 Line project on threat hunting games.

autocats

AUTOCATS is the automated code analysis testing suite, used by projects like CERT Kaiju. This repository is a "mirror" -- please file tickets, bug reports, or pull requests at the upstream home in @CERTCC: https://github.com/certcc/autocats

Gameboard

redemption

Redemption is a tool that automatically repairs C/C++ code given a set of static-analysis alerts

CITE.Ui

The Collaborative Incident Threat Evaluator allows exercise participants to assess the severity of an incident using a scale such as the National Cyber Incident Scoring System.

Caster.Api

Caster is the primary deployment component of the Crucible framework. Caster provides a web interface that gives exercise developers a way to create, share, and manage topology configurations.

helm-charts

gameboard-v2

Gameboard is a flexible web platform that provides game design capabilities and a competition-ready user interface.

Steamfitter.Ui

Steamfitter.Ui gives exercise developers the ability to create scenarios consisting of a series of scheduled tasks, manual tasks, and injects which run against virtual machines in a view.

Caster.Ui

Caster is the primary deployment component of the Crucible framework. Caster provides a web interface that gives exercise developers a way to create, share, and manage topology configurations.

juneberry-example-workspace

A sample workspace for the Juneberry machine learning tool.

ansible-role-rwflowpack

An ansible role for configuring and managing the rwflowpack service.

topomojo-ui

eem

This repository hosts Eclipse-related files for the Enabling Evidence-Based Modernization project.

TEC

A tool that allows users to detect ML Mismatch during the development, deployment, and maintenance of a ML component.

ghosts-cyber-range-and-exercise-simulation-tools

Range and simulation tools for executing realistic training and exercise events

FALSA-model-problem

The FALSA model problem is a software that simulates an autonomous drone mission and its intended use is for research in assurance.

scir-oss

scir-oss is a tool that integrates public data and information regarding open source software projects and their products into a Project, Product, Protection, and Policy report (OSS-P4/R).

gamebrain

certccsilklive

Official dockerfile for the Ubuntu based SiLK Live! training system.

osticket-crucible

A plugin for osTicket that provides authentication against an OAuth2 identity server and posts ticket event notifications to the Crucible API.

Player.Api

Player is the centralized interface where users, teams, and administrators go to configure and participate in the cyber exercise.

AppMailRelay

Gallery.Ui

Gallery is an exercise inject visualization tool. It allows various types of inject data to be displayed, categorized, and searched by exercise participants.

ml-mismatch-descriptors

A set of descriptors used to support TEC the ML Mismatch detection tool, and other future tools.

REST

REST is a simple J2EE based application that is designed to exposed RDBMS database via webservices. REST software is designed to simplify integration of several RDBMS datasources to a JSON/XML for frameworks like jQuery etc.

UnitML

Vm.Api

The Vm.Api is the backend restful API for the VM application that integrates with Player to display and manage virtual machines.

augur-results

Augur is a toolset that helps simulate and detect drift in different types of datasets. This repo contains the results of experiments run using the toolset.

Blueprint.Ui

ansible-role-yaf

An ansible role for installing, configuring, and managing the YAF service.

GameEngine

GameEngine is a web API that serves games and challenges and also provides grading for the Gameboard platform.