Last week, the Cybersecurity and Infrastructure Security Agency (CISA) in partnership with the Department of Energy’s Pacific Northwest National Lab released RedEye, an interactive open-source analytic tool for use by network defenders and Red Teams to visualize and report command and control activities.
According to CISA, RedEye allows “a Red Team operator to quickly assess complex data associated with an engagement or penetration test (pen test), evaluate mitigation strategies, and enable effective decision making to strengthen an organizations cybersecurity posture.” Using this tool, Red Teams can quickly organize information and communicate findings, key events, and penetration paths, which without this tool would be a manual process scrolling through thousands of lines of text. Read more at CISA.