-
Updated
May 29, 2020
#
blue-team
Here are 49 public repositories matching this topic...
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
security
automation
hacking
infosec
pentesting
pentest
hacking-tool
red-team
security-tools
pentest-tool
blue-team
hacking-tools
red-teams
blue-teams
pentest-tools
-
Updated
May 27, 2020 - Python
Open
LDAP认证失败
15
capnspacehook
commented
Jan 15, 2019
Unit tests need to be created that tests obfuscating with all possible Mutator permutations that are 2 Mutators long. So basically given the dozen or so current Mutators, make sure Mutators don't just work on their separately, but together as well. I've run into a few random cases where using Mutators in specific combinations produces faulty payloads, and want a test that can do this for me.
Us
An Active Defense and EDR software to empower Blue Teams
-
Updated
Jun 5, 2020 - C++
Respounder detects presence of responder in the network.
golang
hackers
responder
network-security-monitoring
attack-prevention
llmnr
computer-security
network-security
attack-defense
blue-team
-
Updated
Jun 15, 2019 - Go
Detecting ATT&CK techniques & tactics for Linux
incident-response
red-team
blue-team
mitre-attack
defensive-security
security-operations
threathunting
linux-hunting
-
Updated
Sep 2, 2019 - Roff
This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.
hacking
forensics
penetration-testing
infrastructure-monitoring
forensic-analysis
blueteam
hacking-attack-tools
internal-pentest
redteaming
blue-team
redteam
hacking-tools
purpleteam
forensics-investigations
-
Updated
Aug 4, 2018 - Python
Monitoring your Slack workspaces for sensitive information
slack
tools
monitoring
cybersecurity
infosec
slack-api
red-team
blueteam
blue-team
redteam
purpleteam
purple-team
slack-workspaces
-
Updated
Jun 2, 2020 - Python
The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.
-
Updated
Oct 11, 2017 - Go
-
Updated
Jul 16, 2018
devmaximilian
commented
Nov 3, 2019
Would it be possible to add support for excluding specific ports? I'm thinking this could be an additional argument passed to the script (a comma-delimited list of ports).
An example call could look like the following:
portforge.cr localhost 4440 4445 4442,4443
This would exclude ports 4442 and 4443.
The reasoning behind my feature request is that I might want to run a web server on
Data EXfiltration TestER
-
Updated
Aug 28, 2019 - C
Sharing Threat Hunting runbooks
-
Updated
Jul 5, 2019
dfirence
commented
Apr 22, 2020
These screenshots in this issue serve as static content linked to tutorials, this is not an issue or flaw with the product.
OSQuery GraphQL web service.
-
Updated
Jul 30, 2017 - Python
Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threat hunting, blue team assessments, audits, and security control assessments.
docker
kibana
logstash
netflow
jupyter
incident-response
syslog
elk
audit
cybersecurity
hunt
elastic
nessus
elastalert
blue-team
-
Updated
Apr 10, 2020 - Python
An Information Security Reference That Doesn't Suck
processing
learning
documentation
automation
framework
tools
attack
exploit
tool
reference
scan
dfir
infosec
defense
cobalt-strike
red-team
phish
blue-team
stager
purple-team
-
Updated
Jan 24, 2018 - Python
A blue-team tool, creates a list of USB-Rubber-Ducky instructions.
-
Updated
Jun 8, 2019 - Python
A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations.
docker
automation
overload
hacking
pentesting
pentest
automation-framework
hacking-tool
distractions
red-team
security-tools
blue-team
red-teams
blue-teams
pentesting-tools
security-operations
-
Updated
Jun 21, 2019 - Python
Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries
-
Updated
Jan 1, 2018 - HTML
Easy to maintain open source documentation websites.
static-site-generator
aws
documentation
docs
red
blue
static-site
developer-tools
purple
development-workflow
team
development-environment
doc
developer-experience
aws-cloudformation
red-team
code-pipeline
blue-team
purple-team
-
Updated
Dec 29, 2017 - JavaScript
Elasticsearch-based log search and wiki application
elasticsearch
ldap
netflow
wiki
logging
active-directory
syslog
windows-eventlog
security-tools
blue-team
log-search
-
Updated
May 28, 2018 - JavaScript
an awesome list of honeypot resources
osint
honeypot
blue
malwareanalysis
dfir
cert
team
malware-analysis
malware-research
threat-sharing
threatintel
threat-intelligence
honeypots
blue-team
-
Updated
Jan 2, 2018 - Python
Improve this page
Add a description, image, and links to the blue-team topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the blue-team topic, visit your repo's landing page and select "manage topics."
WatchAD 和WatchAD-Web的保姆级安装教程: http://bigyoung.cn/blog/posts/23/