Stratus Red team v2.1 releases: emulate offensive attack techniques
Stratus Red team
Stratus Red Team is “Atomic Red Team™” for the cloud, allowing to emulate offensive attack techniques in a granular and self-contained manner.
Stratus Red Team is a lightweight Go binary you can install easily. It comes packaged with a number of AWS-specific attack techniques. Each attack technique is a documentation page automatically generated from the source code.
Stratus Red Team handles spinning up any infrastructure or configuration needed to execute an attack technique. This is what it calls warming-up an attack technique. Once an attack technique is “warm”, it can be detonated, i.e. executed to emulate the attacker behavior it intends to simulate.
List of all Attack Techniques
This page contains the list of all Stratus Attack Techniques.
Changelog v2.1
- New Azure attack technique: Export Disk Through Shared Access Signature URL
- New Azure attack technique: Execute Command on Virtual Machine using Custom Script Extension by Ryan Marcotte Cobb @rcobb-scwx
- New AWS attack technique: Overwrite Lambda Function Code by @rollwagen
- Add dynamic CLI autocomplete for techniques by @rollwagen
Enhancements:
- bf7a2ab Disable logging when using the programmatic interface (closes #126)
- 947fbb4 Add execution UUID to the Terraform user-agent
Install & Use
Copyright (C) 2022 @christophetd