AttackGen

The GitHub repository for AttackGen provides a cybersecurity incident response testing tool that integrates large language models with the MITRE ATT& CK framework to generate tailored incident response scenarios

Features

📌 Scenario Generation: AttackGen can generate unique incident response scenarios based on selected threat actor groups

📌 Customization: Users can specify their organization’s size and industry for scenarios tailored to their specific context

📌 MITRE ATT& CK Integration: The tool displays a detailed list of techniques used by the chosen threat actor group according to the MITRE ATT& CK framework

📌 Custom Scenarios: There is an option to create custom scenarios based on a selection of ATT& CK techniques

📌 Feedback Capture: AttackGen includes a feature to capture user feedback on the quality of the generated scenarios

📌 Docker Container: The tool is available as a Docker container image for easy deployment

Usage

📌 Running the Tool: Instructions are provided for running AttackGen and navigating to the provided URL in a web browser

📌 Scenario Selection: Users can select their company’s industry, size, and the desired threat actor group to generate scenarios

Requirements

📌 Python: A recent version of Python is required

📌 Python Packages: Dependencies include pandas, streamlit, and other packages necessary for the custom libraries (langchain and mitreattack)

📌 API Keys: An OpenAI API key is needed, and a LangChain API key is optional