RE:TERNAL – Centralised Purple Team Simulation Platform

RE:TERNAL is a centralised purple team simulation platform. Reternal uses agents installed on a simulation network to execute various known red-teaming techniques in order to test blue-teaming capabilities.

RE:TERNAL - Centralised Purple Team Simulation Platform
RE:TERNAL – Centralised Purple Team Simulation Platform

The simulations are mapped to the MITRE ATT&CK framework. This repo contains the compose file in order to set up the reternal platform via docker. An additional import script is available to create your first user and import Mitre and Metta databases.

The main page displays all of the registered agents. By selecting the agent you’ll be able to interact with the agent and schedule tasks. The platform include the following components:

  • API – Administrative API to schedule tasks
  • UI – VueJS-based UI buildscript and NGinx webserver
  • C2 – Seperate API endpoint that agents use to communicate with
  • Agent Compiler – Service that compiles the agent (Golang) payloads
  • Mitre – Repository containing already existing mapped techniques for reternal

The current features with this platform are:

  • Agent Overview – main page displays all of the registered agents.
  • Actor mapping – Reternal automatically maps available commands and techniques to actors.
  • Technique mapping – Commands are mapped to MITRE ATTCK techniques.
  • Recipe builder – Scheduling tasks to be run on an agent is called a recipe. You can add manual commands to a recipe or select one of the existing mapped techniques or actor TTPs.

You can read more and download the platform over here: https://github.com/d3vzer0/reternal-quickstart

Share