Stratus Red Team

Stratus Red Team is a lightweight Go binary you can install easily. It comes packaged with a number of AWS-specific attack techniques. Each attack technique as a documentation page, automatically generated from source code.

Stratus Red Team handles spinning up any infrastructure or configuration needed to execute an attack technique. This is what it calls warming-up an attack technique. Once an attack technique is “warm”, it can be detonated, i.e. executed to emulate the attacker behavior it intends to simulate.

Stratus Red Team is available for free, it's a lightweight, easy-to-install Go binary that comes packaged with a number of AWS-specific attack techniques, such as:
- Credential access: Steal EC2 instance credentials
- Discovery: Execute discovery commands on an EC2 instance
- Defense evasion: Stop a CloudTrail trail
- Exfiltration: Exfiltrate data from an S3 bucket by backdooring its bucket policy