blueteam

There are 81 repositories under blueteam topic.

theHarvester
laramies / theHarvester
E-mails, subdomains and names Harvester - OSINT
osint subdomain-enumeration redteam recon blueteam discovery emails python information-gathering reconnaissance
Language:Python 10287
GTFOBins / GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
binaries bind-shell blueteam bypass exfiltration gtfobins linux post-exploitation redteam reverse-shell unix
Language:HTML 10084
LOLBAS-Project / LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
blueteam dfir living-off-the-land lolbins lolscripts purpleteam redteam
Language:XSLT 6560
yaklang / yakit
Cyber Security ALL-IN-ONE Platform
blueteam burpsuite exploit golang hacking hacking-tools pentest redteam redteam-tools scanner security
Language:TypeScript 5973
rmusser01 / Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
infosec infosec-reference reverse-engineering hacking pentesting penetration-testing references linux privilege-escalation information-security blueteam red-team windows osx forensics hacking-simulator privilege-escalation-exploits hacktoberfest hacktoberfest2021
Language:CSS 5355
ihebski / DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
infosec default-password pentesting bugbounty pentest credentials-gathering cheatsheet cybersecurity blueteam offensive-security exploit
Language:Python 5263
1earn
ffffffff0x / 1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
markdown-article linux-learning pentest study security collection blueteam redteam post-penetration ics-security writeup pentest-tool poc ctf security-tools infosec hacking
Language:C++ 4965
decalage2 / awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
awesome-list best-practices blue-team blueteam cis-benchmarks computer-security cyber-security cybersecurity infosec linux-hardening security security-hardening security-tools windows-hardening
4934
kubernetes-goat
madhuakula / kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
kubernetes vulnerable-app security hacking pentesting infrastructure cloud-security docker container kubernetes-goat devsecops cloudsecurity kubernetes-security container-security owasp cloud-native k8s blueteam redteam
Language:HTML 3860
snoop
snooppr / snoop
Snoop — инструмент разведки на основе открытых данных (OSINT world)
blueteam ctf geo geocoder infosec ip nickname osint parser pentest police redteam scanner scraping security termux username username-checker username-search web-scraping
Language:Python 2671
LogonTracer
JPCERTCC / LogonTracer
Investigate malicious Windows logon by visualizing and analyzing Windows event log
security dfir javascript visualization active-directory event-log blueteam python-3
Language:Python 2626
WithSecureLabs / chainsaw
Rapidly Search and Hunt through Windows Forensic Artefacts
attack rust security threat-hunting blueteam chainsaw detection dfir forensics logs sigma windows countercept
Language:Rust 2540
opsdisk / the_cyber_plumbers_handbook
Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.
blueteam kali lateral-movement oscp penetration-testing pivoting proxychains redteam socks5 ssh tunneling
2495
activecm / rita
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
rita network-traffic threat scanning offensive-countermeasures bro-ids blueteam security logs analytics analysis bhis beacon beacon-sniffer dns dns-tunneling dga
Language:Go 2462
BlueTeam-Tools
A-poc / BlueTeam-Tools
Tools and Techniques for Blue Team / Incident Response
blue-team blueteam cheatsheet cyber-security defender incident incident-response malware-analysis resources tools vulnerability-management wiki
2325
0x6d69636b / windows_hardening
HardeningKitty and Windows Hardening settings and configurations
audit blueteam checklist compliance defense hardening powershell registry security windows windows-10 windows-hardening
Language:PowerShell 2151
Mr-xn / RedTeam_BlueTeam_HW
红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具
blueteam hw pentest-tool readteam
Language:Java 1993
api0cradle / UltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.
applocker awl blueteam bypass purpleteam redteam rules
Language:PowerShell 1803
api0cradle / LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
blueteam dfir living-off-the-land lolbins lolscripts purpleteam redteam
Language:XSLT 1581
lkarlslund / Adalanche
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
acl acl-audit active-directory activedirectory ad-audit blueteam graph-theory infosec ldap ldap-audit reconnaissance
Language:Go 1516
Blue-Team-Notes
Purp1eW0lf / Blue-Team-Notes
You didn't think I'd go and leave the blue team out, right?
blueteam cybersecurity dfir infosec powershell
1455
xiecat / goblin
一款适用于红蓝对抗中的仿真钓鱼系统
blueteam cybersecurity goblin golang-tools honeypots phishing redteam redteam-tools security security-tools
Language:Go 1375
WADComs / WADComs.github.io
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
blueteam cheatsheet commands enumeration exploitation persistence privilege-escalation redteam wadcoms windows
Language:HTML 1299
scipag / HardeningKitty
HardeningKitty - Checks and hardens your Windows configuration
audit blueteam checklist defense hardening powershell registry security windows windows-10 windows-server
Language:PowerShell 1133
PlumHound
PlumHound / PlumHound
Bloodhound for Blue and Purple Teams
active active-directory activedirectory attack-paths bloodhound bloodhoundad bloodhoundad-cypher-queries bloodhoundad-pathfinding-engine bluehound blueteam cypher-query directory infosec neo4j plumhound-tasks purple-teams purpleteam redteam reporting-tool
Language:Python 1008
Bert-JanP / Hunting-Queries-Detection-Rules
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
azure blueteam cybersecurity defender-for-endpoint dfir infosec kql mde mdi misp security sentinel threat-hunting vulnerability-management zero-day
Language:Python 985
cfalta / MicrosoftWontFixList
A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))
activedirectory blueteam microsoft redteam security-tools
931
NH-RED-TEAM / RustHound
Active Directory data collector for BloodHound written in Rust. 🦀
active-directory adcs bloodhound blueteam collector cross-compiled cross-platform network pentest pentesting redteam rust sharphound windows
Language:Rust 858
emtunc / SlackPirate
Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace
blueteam blueteaming python redteam redteaming slack slack-api
Language:Python 715
Zeus-Labs / ZeusCloud
Open Source Cloud Security
aws blueteam bugbounty ciem cis cloud cloudsecurity cnapp cspm cwpp cybersecurity devsecops infosec pentesting security security-tools
Language:TypeScript 666
FalconForceTeam / FalconFriday
Hunting queries and detections
kql blueteam hunting purpleteam sentinel defender-atp defender-for-endpoint
651
auth0 / repo-supervisor
Scan your code for security misconfiguration, search for passwords and secrets. :mag:
blueteam redteam secret-management secrets secrets-detection security serverless
Language:JavaScript 634
ffffffff0x / Pentest101
一些关于渗透测试的Tips
ffffffff0x bypass redteam blueteam linux pentest-tool pentest
561
bluecapesecurity / PWF
Practical Windows Forensics Training
blueteam cybersecurity forensics purpleteam
Language:PowerShell 539
scythe-io / purple-team-exercise-framework
Purple Team Exercise Framework
ptef purpleteamexerciseframework adversaryemulation purpleteam redteam blueteam adversarysimulation
528
cyberark / PipeViewer
A tool that shows detailed information about named pipes in Windows
blueteam cybersecurity namedpipe namedpipes redteam redteam-tools research-tool windows
Language:C# 527

blueteam

laramies / theHarvester

GTFOBins / GTFOBins.github.io

LOLBAS-Project / LOLBAS

yaklang / yakit

rmusser01 / Infosec_Reference

ihebski / DefaultCreds-cheat-sheet

ffffffff0x / 1earn

decalage2 / awesome-security-hardening

madhuakula / kubernetes-goat

snooppr / snoop

JPCERTCC / LogonTracer

WithSecureLabs / chainsaw

opsdisk / the_cyber_plumbers_handbook

activecm / rita

A-poc / BlueTeam-Tools

0x6d69636b / windows_hardening

Mr-xn / RedTeam_BlueTeam_HW

api0cradle / UltimateAppLockerByPassList

api0cradle / LOLBAS

lkarlslund / Adalanche

Purp1eW0lf / Blue-Team-Notes

xiecat / goblin

WADComs / WADComs.github.io

scipag / HardeningKitty

PlumHound / PlumHound

Bert-JanP / Hunting-Queries-Detection-Rules

cfalta / MicrosoftWontFixList

NH-RED-TEAM / RustHound

emtunc / SlackPirate

Zeus-Labs / ZeusCloud

FalconForceTeam / FalconFriday

auth0 / repo-supervisor

ffffffff0x / Pentest101

bluecapesecurity / PWF

scythe-io / purple-team-exercise-framework

cyberark / PipeViewer