Security News > 2022 > October > CISA releases open-source 'RedEye' C2 log visualization tool
The U.S. Cybersecurity and Infrastructure Security agency has announced RedEye, an open-source analytic tool for operators to visualize and report command and control activity.
A joint project from CISA and DOE's Pacific Northwest National Laboratory, RedEye can parse logs from attack frameworks to present complex data in a more digestible format.
Historical records of each campaign logs loaded into RedEye can be viewed in a graphical representation that correlates servers and hosts involved.
The features available in RedEye allow analysts to comment on the attacker's activity for better collaboration and understanding of the attack path.
Blue teams can also use RedEye to understand easier the raw data received from an assessment, and view the attack path and the compromised hosts so they can take appropriate action.
RedEye is the latest in a set of tools that CISA released as open-source projects over the past few years.