There are 3 repositories under blueteaming topic.
🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources
Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace
All my Source Codes (Repos) for Red-Teaming & Pentesting + Blue Teaming
With EmailAnalyzer you can analyze your suspicious emails. You can extract headers, links, and hashes from the .eml file and you can generate reports.
Repository with Sample KQL Query examples for Threat Hunting
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-Team defense under an active threat.
NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing RWX to X or RX or (both) [Bypassing AVs]
OSINT Bookmarks for Firefox / Chrome / Edge / Safari
DDWPasteRecon tool will help you identify code leak, sensitive files, plaintext passwords, password hashes. It also allow member of SOC & Blue Team to gain situational awareness of the organisation's web exposure on the pastesites. It Utilises Google's indexing of pastesites to gain targeted intelligence of the organisation. Blue & SOC teams can collect and analyse data from these indexed pastesites to better protect against unknown threats.
List of sources for cybersecurity news
Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool
Actionable analytics designed to combat threats based on MITRE's ATT&CK.
BasicEventViewer4 (BEV v4.0), this code will useful for All Blue/Purple Teams , RealTime Monitoring Sysmon Events , Mitre Attack Detections via yaml files
Easy automated vagrant provisioning of Windows 10 with flarevm tools installed for Digital Forensics and Malware Analysis Lab.
A user-friendly and powerful tool to analyze Windows Security Events
BasicEventViewer (BEV v3.0), this code will useful for All Blue Teamers.
Triage an IP using powershell
systeminfo command for offline system images
a complete course in SOC tier1,notes slides and codes
A blog for ctf write-ups, automation projects and such.
Your Fortress of Cyber Security Knowledge
Blue Team resources and tools
A collection of tools & guides for the planning and implementation of MITRE D3FEND. This repository is independent research and is not an official nor a sanctioned MITRE D3FEND resource.
ScaryCon is a South African conference promoted by ScaryByte to demonstrate cybersecurity and cyber intelligence in its reality.
Security Blue Team - path progress