Interactive Tool

Playbook Builder

Start from operational templates, execute task checklists, attach evidence, and export local-only playbooks for engagements, incident response, and audits.

Information

Local workspace boundary: playbooks and evidence stay in this browser's IndexedDB. Use encrypted JSON export when you need to move a playbook between browsers.

Playbook Builder

Build, execute, and export operational playbooks without sending engagement data off-device.

Client-Side Storage

Red Team Operations

(2 templates)

Red Team Engagement

advanced

Comprehensive adversary simulation engagement playbook covering reconnaissance through objective completion

Phases8
Tasks32
Estimate~160h
adversary-simulationfull-engagementc2persistence

Social Engineering Campaign

intermediate

Multi-vector social engineering assessment including phishing, vishing, and physical security testing

Phases5
Tasks15
Estimate~40h
social-engineeringphishingvishingphysical

Incident Response

(2 templates)

Incident Response Playbook

advanced

Comprehensive incident response playbook following NIST IR lifecycle

Phases6
Tasks28
Estimate~48h
dfirincident-handlingforensicscontainment

Ransomware Incident Response

expert

Specialized incident response playbook for ransomware attacks including containment, eradication, and recovery

Phases6
Tasks22
Estimate~72h
ransomwareincident-responsemalwarerecovery

Purple Team Exercises

(1 template)

Purple Team Exercise

advanced

Collaborative red and blue team exercise to improve detection and response capabilities

Phases7
Tasks30
Estimate~80h
purple-teamdetectionatt&ckcollaboration

Penetration Testing

(5 templates)

Web Application Penetration Test

intermediate

Comprehensive web application security assessment playbook

Phases9
Tasks39
Estimate~40h
web-appowasppentestvulnerabilities

Network Infrastructure Penetration Test

intermediate

Comprehensive internal network security assessment including network segmentation, device security, and lateral movement testing

Phases5
Tasks14
Estimate~80h
networkinfrastructureinternallateral-movement

Cloud Security Assessment (AWS/Azure/GCP)

advanced

Comprehensive cloud infrastructure security audit covering IAM, storage, compute, and network configurations

Phases5
Tasks15
Estimate~60h
cloudawsazuregcp

Mobile Application Penetration Test

advanced

Comprehensive security assessment of iOS and Android applications including static/dynamic analysis and API testing

Phases5
Tasks15
Estimate~50h
mobileiosandroidapi

Wireless Network Penetration Test

intermediate

Comprehensive WiFi security assessment including WPA/WPA2/WPA3 testing, rogue AP detection, and Bluetooth security

Phases5
Tasks15
Estimate~32h
wirelesswifiwpabluetooth

Compliance & Audits

(4 templates)

Supply Chain Security Audit

intermediate

Comprehensive third-party and vendor risk assessment including software supply chain security

Phases5
Tasks15
Estimate~45h
supply-chainvendor-riskthird-partysbom

Physical Security Assessment

beginner

Comprehensive facility security audit including perimeter, access controls, surveillance, and security policies

Phases6
Tasks19
Estimate~40h
physical-securityfacilityaccess-controlsurveillance

DevSecOps Pipeline Security Audit

advanced

Security assessment of CI/CD pipelines, IaC, container registries, and deployment automation

Phases6
Tasks18
Estimate~35h
devsecopscicdpipelinecontainers

Zero Trust Architecture Review

expert

Comprehensive assessment of Zero Trust implementation including identity, devices, networks, and data protection

Phases7
Tasks21
Estimate~50h
zero-trustztnaidentitymicro-segmentation