There are 1 repository under blue-team-tool topic.
BasicEventViewer4 (BEV v4.0), this code will useful for All Blue/Purple Teams , RealTime Monitoring Sysmon Events , Mitre Attack Detections via yaml files
ProcessMarauder is an advanced Python library for injecting DLLs into running processes.
Plutus is a tool that is made ready for the purpose of monitoring your server's processes and identifying strange processes!
ELK slack integration alternative for alerting
Este repositório contém notas e ferramentas de segurança de código aberto de última geração que o ajudarão durante suas avaliações do Blue Team.
A Threat Intelligence Swiss Army Knife
CrowdStrike Falcon® Contain GUI for more flexible control over the host containment process.
Iterates through a specified directory looking for JAR files, outputting a hyperlinked HTML file for quick CVE checks.