{"id":17521646,"url":"https://github.com/vectra-ai-research/Halberd","last_synced_at":"2025-03-06T01:30:47.665Z","repository":{"id":226319902,"uuid":"768345949","full_name":"vectra-ai-research/Halberd","owner":"vectra-ai-research","description":"Cloud security testing tool to execute a comprehensive array of attack techniques across multiple surfaces via a simple web interface.","archived":false,"fork":false,"pushed_at":"2024-09-14T07:12:34.000Z","size":2505,"stargazers_count":27,"open_issues_count":1,"forks_count":3,"subscribers_count":6,"default_branch":"main","last_synced_at":"2024-09-15T16:01:35.742Z","etag":null,"topics":["attack-defense","aws","azure","azuread","blueteam-tools","cloud-security","detection","entra-id","m365","microsoft","mitre-attack","offensive-security","offensivesecurity","redteam","redteam-tools","security-testing","security-tools","ttp"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/vectra-ai-research.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-03-06T23:07:07.000Z","updated_at":"2024-09-14T23:16:12.000Z","dependencies_parsed_at":"2024-04-17T11:29:22.955Z","dependency_job_id":"506d3ceb-9b4e-4863-be15-ff2bbc2371c5","html_url":"https://github.com/vectra-ai-research/Halberd","commit_stats":null,"previous_names":["vectra-ai-research/halberd"],"tags_count":5,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vectra-ai-research%2FHalberd","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vectra-ai-research%2FHalberd/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vectra-ai-research%2FHalberd/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vectra-ai-research%2FHalberd/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/vectra-ai-research","download_url":"https://codeload.github.com/vectra-ai-research/Halberd/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":242131234,"owners_count":20076795,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["attack-defense","aws","azure","azuread","blueteam-tools","cloud-security","detection","entra-id","m365","microsoft","mitre-attack","offensive-security","offensivesecurity","redteam","redteam-tools","security-testing","security-tools","ttp"],"created_at":"2024-10-20T12:01:46.316Z","updated_at":"2025-03-06T01:30:47.657Z","avatar_url":"https://github.com/vectra-ai-research.png","language":"Python","funding_links":[],"categories":["Python"],"sub_categories":[],"readme":"# Halberd: Multi-Cloud Security Testing Platform 🛡️\n\n\u003cp align=\"center\"\u003e\n  \u003cimg src=\"assets/halberd_logo_banner.jpg\" alt=\"logo\" width=\"100%\" align=\"center\"/\u003e\n\u003c/p\u003e\n\nHalberd is an advanced security testing platform that enables security teams to validate cloud security controls through sophisticated attack emulation. By providing comprehensive coverage across Microsoft Entra ID, Microsoft 365, Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP), Halberd helps organizations:\n\n* **Validate Security Controls** : Test detection and prevention capabilities across your cloud infrastructure\n* **Generate Attack Telemetry**: Create realistic security events to tune and optimize your security monitoring\n* **Automate Security Testing**: Build and execute complex attack chains to assess security resilience\n* **Accelerate Red Team Operations**: Rapidly deploy testing scenarios through an intuitive interface\n\n\u003cp align=\"center\"\u003e\n  \u003cimg src=\"assets/halberd_attack_view_v2_0.png\" width=100% align=\"center\"/\u003e\n\u003c/p\u003e\n\n## Key Capabilities\n\n* 🔬 **Advanced Attack Framework**: Execute sophisticated attack techniques mapped to MITRE ATT\u0026CK\n* 📊 **Intelligence Dashboards**: Gather deep insights into security posture through visual analysis\n* 🔄 **Automated Playbooks**: Chain multiple techniques into comprehensive attack scenarios\n* 📈 **Detailed Reporting**: Generate executive and technical reports on security testing outcomes\n* 🔌 **Extensible Architecture**: Add custom techniques through a robust development framework\n* 🌐 **Cross-Platform Support**: Test security controls across all major cloud providers\n\n## Quick Start Guide\n\n1. Clone the repository:\n   ```\n   git clone https://github.com/vectra-ai-research/Halberd.git\n   ```\n\n2. Configure the environment::\n   ```\n   cd Halberd\n   python3 -m venv venv\n   source venv/bin/activate  # On Windows: venv\\Scripts\\activate\n   pip install -r requirements.txt\n   ```\n\n3. Install Azure CLI:\n   * Windows: [Official Microsoft guide](https://learn.microsoft.com/en-us/cli/azure/install-azure-cli-windows?tabs=azure-cli)\n   * Linux: `curl -sL https://aka.ms/InstallAzureCLIDeb | sudo bash`\n   * macOS: `brew update \u0026\u0026 brew install azure-cli`\n\n4. Launch Halberd:\n   ```\n   python3 run.py\n   ```\n\n5. Access the interface at `http://127.0.0.1:8050/` and begin testing\n\n#### Advanced Deployment Options\n\n```\n# Custom Host \u0026 Port\npython3 run.py --host 0.0.0.0 --port 8050\n\n# Enable TLS\npython3 run.py --ssl-cert /path/to/cert.pem --ssl-key /path/to/key.pem\n\n# Configure Logging\npython3 run.py --log-level debug\n\n# Development Mode\npython3 run.py --dev-server --dev-server-debug\n```\n\n## Core Workflows\n\n1. **Attack Execution \u0026 Testing**:\n   * Select target environment (Entra ID/M365/Azure/AWS/GCP)\n   * Browse techniques by MITRE ATT\u0026CK tactics\n   * Execute attacks across multiple clouds\n   * Manage access with built-in access manager\n   * View results with rich output formatting\n   * Generate attack telemetry\n\n2. **Attack Automation**:\n   * Create automated attack playbooks\n   * Chain multiple techniques into attack sequences\n   * Import/Export playbooks for sharing\n   * Schedule recurring security tests\n\n3. **Security Analysis**:\n   * Track testing metrics through intuitive dashboards\n   * Visualize attack paths and impact\n   * Identify security gaps\n   * Generate comprehensive test reports\n   * Export results for compliance evidence\n\nFor detailed usage instructions, visit [Halberd Wiki - Usage](https://github.com/vectra-ai-research/Halberd/wiki/Usage).\n\n## Want to Join the Party? 🎉\n\nGot ideas? Found a bug? Want to add that new cool feature? Check out the [contribution guidelines](https://github.com/vectra-ai-research/Halberd/wiki/Contributions) and let's make Halberd even more awesome together.\n\n## About\nHalberd is developed by [Arpan Sarkar](https://www.linkedin.com/in/arpan-sarkar/) and is [inspired](https://github.com/vectra-ai-research/Halberd/wiki/Additional-(Amazing)-Resources) by the excellent work of the cloud security community.\n\n***\n**Now go forth and hack responsibly! 🚀**","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fvectra-ai-research%2FHalberd","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fvectra-ai-research%2FHalberd","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fvectra-ai-research%2FHalberd/lists"}