Check out our SANS Webcast recording!

Collaborate.

Quantify.

Improve.

We believe in Purple Teams as the best way to assess and improve technical cybersecurity defenses. What are Purple Teams? We define them as an open-book exam process that prioritizes and shows quantifiable improvements in defenses over time.

VECTR Heat Map

Purple Teams through VECTR™ generates success defense metrics and help align Red and Blue Teams towards the same mission: protecting the organization by discovering and plugging detection gaps. If you are scratching your head on how to adopt and align to the MITRE ATT&CK Framework, this is for you.

VECTR™ is the only free platform of its kind and is taught in three SANS classes (that we’re aware of).

VECTR Community

VECTR™ is available for free on Security Risk Advisors’ GitHub page. If you join the VECTR™ community, you’ll receive notifications of updates and new features. You will not be solicited and your contact information will not be shared.

VECTR Capabilities

We developed VECTR™ to help streamline purple team assessments. It provides a centralized dashboard for tracking all things Purple. A quick feature list:

N

Document TTPs used in Purple and Red teams so test cases can be repeated until detection rules are made successful

N

Light up a MITRE ATT&CK heatmap to show your teams’ mutual success and needs

N

Show how far you’ve come with historical trending of your metrics

N

Evaluate and report the effectiveness of your tools investments

N

Prioritize tuning and remediation activities

N

Report defensive capability at each phase in the kill chain

N

Import test cases using STIX 2.0 and TAXII