Open Source

SIRAS

Automate, Simulate, Respond.

SIRAS helps security teams simulate real-world cyber incidents like ransomware or phishing and validate their response plans — automatically.

Join hundreds of security professionals on the waitlist

siras-cli
$ siras -s ransomware -b true
🚀 Starting ransomware simulation...
📊 Monitoring 15 endpoints
🔍 Detected suspicious activity
✅ Response plan executed successfully
$ _

Why SIRAS?

Automate Incident Response

Run realistic cyber incident simulations automatically without manual setup. Focus on what matters - your response strategy.

Validate Detection & Playbooks

Test your security controls against real-world scenarios. Ensure your detection rules and response playbooks actually work.

Open Source & Developer Friendly

Built by security professionals, for security professionals. MIT licensed, extensible, and community-driven.

How it Works

Four simple steps to transform your incident response capabilities

1

Define Your Scenario

Choose from our library of pre-built scenarios or create custom ones tailored to your specific environment and threat landscape.

Ransomware
Phishing
Data Exfiltration
2

Launch Simulation

Trigger simulations instantly via API, CLI, or scheduled automation. Seamlessly integrate with your existing security stack.

API Integration
CLI Commands
Scheduled
3

Monitor & Respond

Track your team's response in real-time with live dashboards. Get instant alerts and notifications across all channels.

Slack Alerts
Real-time Notifications
Live Monitoring
4

Analyze & Improve

Generate comprehensive reports, identify response gaps, and continuously enhance your incident response capabilities.

Detailed Reports
Gap Analysis
Continuous Improvement

Features

Scenario Library

Pre-built scenarios covering common attack vectors with customizable parameters.

API-Driven

RESTful API for seamless integration with your existing security stack and automation tools.

Runbook Integration

Automatically execute and validate your incident response runbooks during simulations.

Slack/Webhook Alerts

Real-time notifications to your team via Slack, Microsoft Teams, or custom webhooks.

MITRE ATT&CK Alignment

All scenarios mapped to MITRE ATT&CK framework for comprehensive threat coverage.

Multi-Cloud Support

Currently AWS, with Azure and GCP support coming soon. Deploy anywhere.

SIRAS+ Dashboard

Professional incident response simulation platform with real-time analytics and team collaboration

Active Simulations

12
+3 this week

Response Time

2.3m
-0.5m avg

Success Rate

94%
+2% this month

Team Members

8
No change

Recent Simulations

Ransomware Attack

Completed 2 hours ago

Success 1.8m response time

Phishing Campaign

Completed 5 hours ago

Success 2.1m response time

Data Exfiltration

Running for 15 minutes

In Progress 15m elapsed

Performance Metrics

Detection
92%
Response
88%
Recovery
95%
Communication
85%

Ransomware Attack

Active

Simulates a ransomware attack with file encryption and ransom demand

2.3m avg 5 participants Last run: 2h ago

Phishing Campaign

Paused

Tests email security awareness and phishing detection capabilities

1.8m avg 8 participants Last run: 5h ago

Data Exfiltration

Running

Monitors data access patterns and unauthorized data transfer attempts

3.1m avg 3 participants Started: 15m ago

Monthly Performance

Week 1 Week 2 Week 3 Week 4

Team Performance

SC

Sarah Chen

Lead Security Engineer

98% Success Rate
MJ

Mike Johnson

Security Analyst

92% Success Rate
AL

Alex Lee

Incident Responder

89% Success Rate

Active Team Members

SC

Sarah Chen

Lead Security Engineer

Online
MJ

Mike Johnson

Security Analyst

In Simulation
AL

Alex Lee

Incident Responder

Offline

Recent Activity

Sarah Chen started a ransomware simulation

2 minutes ago

Mike Johnson completed phishing test

15 minutes ago

Alex Lee joined the team

1 hour ago

Ready to Transform Your Incident Response?

Join to the waitlist and be among the first to experience automated security simulations.