-
Notifications
You must be signed in to change notification settings - Fork 150
Home
Metta is an information security preparedness tool.
This project uses Redis/Celery, python, and vagrant with virtualbox to do adversarial simulation. This allows you to test (mostly) your host based instrumentation but may also allow you to test any network based detection and controls depending on how you set up your vagrants.
The project parses yaml files with actions and uses celery to queue these actions up and run them one at a time without interaction. This takes away the need for any manual actions across your vagrants and will allow you to programmatically chain together actions into scenarios for detection rule validation, vendor testing, or creating events for your security team to triage.
Metta (Pali) Loving kindness, gentle friendship; a practice for generating loving kindness said to be first taught by the Buddha as an antidote to fear. It helps cultivate our natural capacity for an open and loving heart and is traditionally offered along with other Brahma-vihara meditations that enrich compassion, joy in the happiness of others and equanimity. These practices lead to the development of concentration, fearlessness, happiness and a greater ability to love.
In other words, running adversarial simulations to test your network and EDR devices should elevate your happiness levels and decrease those fear levels. It also makes the Blue Team feel loved.
-
Doesn't atomic testing do this? Yes, but it is a manual tool. We've ported a bunch of the functionality into Metta.
-
Doesn't $X do this? Maybe, create an GitHub issue and we'll see if it makes sense to partner or port the functionality.
-
I changed some code but things aren't working like they should. Any ideas? Try stopping your start_vagrant_celery.sh session and restarting it should pick up changes you made. In general it keeps the state of your code until you restart it. Didn't work? create a GitHub issue and/or ping carnal0wnage on Twitter.
Please create a issue via Github.
See the setup.md page
See the Running Metta wiki page
See the Actions wiki Page
See the Scenarios wiki Page