Detection Packages

Free detection rules for every MITRE ATT&CK technique. Upgrade to Pro for complete purple team packages.

Free

£0 /month
  • KQL detection rules (Microsoft Sentinel)
  • SPL detection rules (Splunk)
  • MITRE ATT&CK coverage matrix
  • Required data sources and tables
  • False positive guidance
Browse Detections
Recommended

Pro

£29 /user/month
  • Everything in Free
  • Response playbooks per technique
  • Investigation guides with forensic artifacts
  • Atomic Red Team test cases
  • Bulk export (JSON, YAML, CSV)
  • REST API access
Sign Up to Upgrade
Contact Us

Enterprise

Custom

For MSSPs and SOC teams

  • Everything in Pro
  • Bulk API access for multi-tenant deployment
  • Priority support
  • Custom integrations
  • Volume licensing
  • Dedicated onboarding
Contact Us