Operator is an autonomous red team C2 platform, built by Prelude. It is designed for red, purple and blue teamers to conduct realistic threat assessments. Using the desktop application, you can deploy agents on remote computers and launch custom adversary profiles against them to identify the holes that antivirus programs & vulnerability scanners are not designed to locate.
Watch our quick introduction video
You can download the latest copy of the application here, for either MacOS, Windows or Linux.
Did you know that the team at Prelude runs free red team training programs as part of our open-source outreach? We teach IT/InfoSec/DevOps/defenders/software engineers how to red team, so they can apply practical techniques to their day jobs. Reach out to us at support@prelude.org for more details.
This repository is the home to all Operator plugins (see below). It is also a public spot to report issues and request features for anything in the application.
The Prelude development & security teams run several supporting resources for the community:
- A Discord server to interact with the team.
- A YouTube video library containing tutorials and use-cases.
- A blog, where we post on general security and specific Operator topics.
- Pneuma: A cross-platform GoLang agent that connects to Operator and executes attacks.
- Community: A collection of ATT&CK-classified procedures which Operator can send to agents, like Pneuma, to execute.
Inside this repository, you will find all open-source plugins that are supported within Operator.
Plugins are extensions to the platform and allow you to add or overwrite behavior inside the application. Plugins here are automatically available inside Operator's plugin section. The code is published here for transparancy and review.
Find a bug in the system? Report it through the issues tab.
If you find a security-related bug, please disclose it privately to support@prelude.org with "security bug" in the subject.
Have a feature idea? Request it through the issues tab.
Have a question that may not be suitable here? Send us an email at support@prelude.org with "help needed" in the subject.