Prelude's internal team continuously develops TTPs and adversary profiles to be used inside of Operator. 237 professional TTPs are currently available, including: MITRE Center for Threat informed defense emulation plans (APT29, Fin6, menuPass), CISA inspired adversary based on APT’s targeting Think Tanks (Modular malware with “TTPs as code”), Container attack scenario (Docker), Azure cloud attack scenario, LoLBAS project for Windows.
Easily visualize your attack chains and see what succeeded (and didn't). Export those results to a format that works for you - .json, .csv or a pre-formatted red-team report in Word.
Running an assessment and need help analyzing something? Need guidance on designing a new adversary profile? Professional users can click the "help" icon and a Prelude team member will be there to help.
If you have an Operator professional license, a tool called Switchboard will be automatically installed on any newly provisioned redirector. Switchboard is a systems application that allows you to easily share an agent’s beacons with teammates.
Designed for individual security engineers & researchers learning about adversary emulation.
Designed for security engineers using Operator for professional use.