37 results found Sort:

LOLBAS-Project
LOLBAS LOLBAS-Project
950
6.7k
gpl-3.0
228
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
dfir lolbins redteam blueteam lolscripts purpleteam living-off-the-land
Created 2018-06-08
764 commits to master branch, last one 9 days ago
LasCC
HackTools LasCC
619
5.5k
unknown
187
The all-in-one browser extension for offensive security professionals 🛠
hack hackbar hacking redteam msfvenom payloads hacktools bug-bounty cheatsheet hack-tools metasploit purpleteam hackingtools xss-payloads firefox-addon reverse-shell web-pentesters chrome-extension
Created 2020-06-22
321 commits to master branch, last one 9 days ago
api0cradle
UltimateAppLockerByPassList api0cradle
349
1.8k
unknown
117
The goal of this repository is to document the most common techniques to bypass AppLocker.
awl rules bypass redteam blueteam applocker purpleteam
Created 2017-07-11
64 commits to master branch, last one 8 months ago
api0cradle
LOLBAS api0cradle
344
1.6k
unknown
142
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
dfir lolbins redteam blueteam lolscripts purpleteam living-off-the-land
This repository has been archived (exclude archived)
Created 2018-04-18
192 commits to master branch, last one 5 years ago
ahmedkhlief
APT-Hunter ahmedkhlief
232
1.2k
gpl-3.0
47
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspi...
python3 purpleteam apt-attacks threat-hunting windows-eventlog forensic-analysis incident-response windows-event-logs
Created 2020-12-26
100 commits to main branch, last one 3 months ago
cyb3rxp
awesome-soc cyb3rxp
182
1.1k
cc0-1.0
30
A collection of sources of documentation, as well as field best practices, to build/run a SOC
soa soc tip ttp cert siem sirp soar csirt detection management purpleteam architecture mitre-attack risk-management incident-response
Created 2022-08-23
650 commits to main branch, last one about a month ago
PlumHound
PlumHound PlumHound
104
1.0k
gpl-3.0
39
Bloodhound for Blue and Purple Teams
neo4j active infosec redteam blueteam bluehound directory bloodhound purpleteam attack-paths bloodhoundad cypher-query purple-teams reporting-tool activedirectory plumhound-tasks active-directory bloodhoundad-cypher-queries bloodhoundad-pathfinding-engine
Created 2020-05-01
396 commits to master branch, last one about a month ago
FalconForceTeam
FalconFriday FalconForceTeam
73
663
bsd-3-clause
51
Hunting queries and detections
kql hunting blueteam sentinel purpleteam defender-atp defender-for-endpoint
Created 2020-08-04
97 commits to master branch, last one about a month ago
ch33r10
EnterprisePurpleTeaming ch33r10
95
624
mit
25
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
redteam red-team adversary purpleteam purple-team adversaryemulation adversary-emulation adversary-simulation
Created 2021-06-19
73 commits to main branch, last one 11 months ago
scythe-io
purple-team-exercise-framework scythe-io
87
547
mit
30
Purple Team Exercise Framework
ptef redteam blueteam purpleteam adversaryemulation adversarysimulation purpleteamexerciseframework
Created 2020-07-22
35 commits to master branch, last one about a year ago
bluecapesecurity
PWF bluecapesecurity
93
547
agpl-3.0
17
Practical Windows Forensics Training
blueteam forensics purpleteam cybersecurity
Created 2022-02-13
70 commits to main branch, last one 3 months ago
iknowjason
PurpleCloud iknowjason
85
484
mit
25
A little tool to play with Azure Identity - Azure Active Directory lab creation tool
dfir siem azure pentest azure-lab purpleteam dfir-automation
Created 2020-06-23
287 commits to master branch, last one 3 months ago
idnahacks
GoodHound idnahacks
41
440
unknown
9
Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.
neo4j py2neo python python3 redteam blueteam bloodhound purpleteam cybersecurity activedirectory active-directory
Created 2021-10-14
171 commits to main branch, last one 2 years ago
PaperMtn
slack-watchman PaperMtn
35
294
gpl-3.0
10
Slack enumeration and exposed secrets detection tool
slack tools infosec redteam blueteam red-team blue-team slack-api monitoring purpleteam purple-team cybersecurity slack-workspaces
Created 2020-04-26
230 commits to master branch, last one 11 months ago
DefensiveOrigins
AtomicPurpleTeam DefensiveOrigins
32
272
gpl-3.0
20
Atomic Purple Team Framework and Lifecycle
attack hunting famework lifecycle purpleteam attack-defense attack-detection lifecycle-management
Created 2020-07-16
10 commits to master branch, last one 3 years ago
Ziconius
FudgeC2 Ziconius
51
245
gpl-3.0
14
FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
c2 implant python3 redteam security powershell purpleteam readteaming cybersecurity security-tools post-exploitation offensive-security command-and-control
Created 2018-09-09
193 commits to main branch, last one 2 years ago
mthcht
awesome-lists mthcht
28
221
unknown
8
Security lists for SOC detections
cti ioc soc list misp awesome redteam blueteam keywords security hacktools purpleteam open-source awesome-list awesome-lists offensive-security
Created 2022-12-11
647 commits to main branch, last one 19 hours ago
PaperMtn
gitlab-watchman PaperMtn
27
191
gpl-3.0
8
Finding exposed secrets and personal data in GitLab
dlp tools gitlab infosec redteam blueteam red-team blue-team gitlab-api monitoring purpleteam purple-team cybersecurity gitlab-watchman data-loss-prevention
Created 2020-09-14
76 commits to master branch, last one about a year ago
AnLoMinus
Diablo AnLoMinus
31
191
unknown
7
Diablo ~ Hacking / Pentesting & Reporting
diablo hacking redteam blueteam portscan reporter scanning reporting pentesting purpleteam portscanner
Created 2022-05-20
111 commits to main branch, last one about a year ago
blackbotsecurity
Atomic-Red-Team-Intelligence-C2 blackbotsecurity
23
166
unknown
7
ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.
csharp dotnet python3 redteam red-teams purpleteam purple-team mitre-attack post-exploitation offensive-security powershell-scripts
Created 2020-11-23
46 commits to master branch, last one 2 years ago
DefensiveOrigins
APT-Lab-Terraform DefensiveOrigins
32
157
gpl-3.0
12
Purple Teaming Attack & Hunt Lab - Terraform
labs azure terraform purpleteam
Created 2020-07-12
50 commits to master branch, last one 3 years ago
TH3xACE
EDR-Test TH3xACE
19
143
unknown
4
Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
edr purpleteam purple-team cobaltstrike mitre-attack cobalt-strike aggressor-scripts
Created 2022-03-27
45 commits to main branch, last one about a year ago
mthcht
Purpleteam mthcht
13
125
unknown
8
Purpleteam scripts simulation & Detection - trigger events for SOC detections
ioc soc siem linux awesome redteam tactics windows blueteam security detection purpleteam simulation techniques awesome-list mitre-attack threathunting threat-hunting offensive-scripts detection-engineering
Created 2022-12-05
600 commits to main branch, last one 2 days ago
iknowjason
BlueCloud iknowjason
30
122
mit
7
Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
dfir blue-team cyberrange pentesting purpleteam cyber-range edr-testing dfir-automation
Created 2021-04-02
77 commits to master branch, last one about a year ago
purpleteam-labs
purpleteam purpleteam-labs
15
114
other
4
CLI component of OWASP PurpleTeam
ci cli devsecops build-tool purpleteam web-security hacktoberfest cloud-security security-testing devsecops-pipeline application-security security-regression-testing
Created 2018-08-26
371 commits to main branch, last one 5 months ago
Viralmaniar
MurMurHash Viralmaniar
17
111
mit
4
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
infosec redteam blueteam phishing murmurhash purpleteam redteaming blueteaming murmurhash3 threatintel cybersecurity threathunting security-tools phishing-detection proactive-security threatintelligence threat-intelligence
Created 2021-04-27
12 commits to main branch, last one 3 years ago
cr0nx
awesome-linux-attack-forensics-purplelabs cr0nx
19
109
gpl-3.0
7
This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.
dfir linux redteam rootkit blueteam detection injection purplelabs purpleteam attack-defense
Created 2023-02-13
33 commits to main branch, last one about a year ago
mikeprivette
NIST-to-Tech mikeprivette
13
104
gpl-3.0
7
An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
nist netsec infosec pentest redteam blueteam nist-csf nist800-53 pentesting purpleteam netsecurity netsec-tools cybersecurity vulnerability cyber-security infosec-approved pentesting-tools infosec-reference cyber-security-team nist-cybersecurity-framework
Created 2020-10-22
44 commits to main branch, last one 4 months ago
jwillyamz
ezEmu jwillyamz
10
103
apache-2.0
9
See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
purpleteam mitre-attack linux-security security-testing adversary-emulation
Created 2020-05-24
44 commits to master branch, last one about a year ago
ziesemer
ad-privileged-audit ziesemer
16
81
unknown
10
Provides various Windows Server Active Directory (AD) security-focused reports.
dfir auditing blueteam security forensics powershell purpleteam cybersecurity reporting-tool security-audit security-tools risk-assessment active-directory system-hardening account-management security-hardening information-gathering security-auditing-tool
Created 2021-04-05
93 commits to main branch, last one 2 months ago