A library of portable detection tests mapped to the MITRE ATT&CK framework for security testing.
Atomic Red Team is an open-source library of security detection tests mapped to the MITRE ATT&CK framework. It enables security teams to test their environments against known adversary techniques in a portable and reproducible manner. The project helps organizations validate their defensive capabilities by simulating real-world attack behaviors.
Security teams, red teamers, and cybersecurity professionals who need to test and validate their organization's detection and response capabilities against MITRE ATT&CK techniques.
Developers choose Atomic Red Team for its direct mapping to the MITRE ATT&CK framework, portability without installation requirements, and community-driven approach to security testing. It provides a standardized way to reproduce attack simulations and improve defensive strategies.
Small and highly portable detection tests based on MITRE's ATT&CK.
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
Tests are directly mapped to MITRE ATT&CK techniques, providing a structured framework for validating defenses against real-world adversary behaviors.
Tests can be run from the command line without installation, enabling easy deployment and quick testing across diverse environments.
Active contributions via Slack and GitHub foster a growing library of tests and collaborative improvements, as highlighted in the README.
Designed for consistency, allowing security teams to reliably repeat tests and verify detection mechanisms over time.
For advanced automation and workflows, integration with frameworks like Invoke-Atomic is recommended, adding complexity beyond the core library.
Reliance on a wiki for documentation may lead to gaps or outdated information, potentially hindering new users compared to formal docs.
Test coverage and maintenance rely on volunteer contributions, which can result in uneven quality or support for certain ATT&CK techniques.