Arabic Arabic Chinese (Simplified) Chinese (Simplified) Dutch Dutch English English French French German German Italian Italian Portuguese Portuguese Russian Russian Spanish Spanish
0

CISA releases RedEye open-source analytic tool | #linux | #linuxsecurity | #hacking | #aihp


CISA has released RedEye, an interactive open-source analytic tool to visualize and report Red Team command and control activities.

RedEye, available on GitHub, allows an operator to assess and display complex data, evaluate mitigation strategies, and enable effective decision-making in response to a Red Team assessment.

The tool parses logs, such as those from Cobalt Strike, and presents the data in an easily digestible format. The users can then tag and add comments to activities displayed within the tool. The operators can use RedEye’s presentation mode to present findings and workflow to stakeholders.

RedEye can assist an operator to efficiently:

  • Replay and demonstrate Red Team’s assessment activities as they occurred rather than manually pouring through thousands of lines of log text.
  • Display and evaluate complex assessment data to enable effective decision-making.
  • Gain a clearer understanding of the attack path taken and the hosts compromised during a Red Team assessment or penetration test.

Platform support

Linux:

  • Ubuntu 18 and newer
  • Kali Linux 2020.1 and newer
  • Others may be supported but are untested

macOS:

Windows:

ARM support is experimental.

Click Here For The Original Source.


————————————————————————————-

National Cyber Security

FREE
VIEW