38 results found Sort:

LOLBAS-Project
LOLBAS LOLBAS-Project
1k
7.1k
gpl-3.0
230
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
dfir lolbins redteam blueteam lolscripts purpleteam living-off-the-land
Created 2018-06-08
790 commits to master branch, last one 10 days ago
LasCC
HackTools LasCC
649
5.8k
unknown
188
The all-in-one browser extension for offensive security professionals 🛠
hack hackbar hacking redteam msfvenom payloads hacktools bug-bounty cheatsheet hack-tools metasploit purpleteam hackingtools xss-payloads firefox-addon reverse-shell web-pentesters chrome-extension
Created 2020-06-22
321 commits to master branch, last one 6 months ago
api0cradle
UltimateAppLockerByPassList api0cradle
352
1.9k
unknown
118
The goal of this repository is to document the most common techniques to bypass AppLocker.
awl rules bypass redteam blueteam applocker purpleteam
Created 2017-07-11
64 commits to master branch, last one about a year ago
api0cradle
LOLBAS api0cradle
342
1.6k
unknown
143
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
dfir lolbins redteam blueteam lolscripts purpleteam living-off-the-land
This repository has been archived (exclude archived)
Created 2018-04-18
192 commits to master branch, last one 5 years ago
ahmedkhlief
APT-Hunter ahmedkhlief
238
1.3k
gpl-3.0
47
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspi...
python3 purpleteam apt-attacks threat-hunting windows-eventlog forensic-analysis incident-response windows-event-logs
Created 2020-12-26
105 commits to main branch, last one 2 months ago
cyb3rxp
awesome-soc cyb3rxp
206
1.2k
cc0-1.0
35
A collection of sources of documentation, as well as field best practices, to build/run a SOC
soa soc tip ttp cert siem sirp soar csirt detection management purpleteam architecture mitre-attack risk-management incident-response
Created 2022-08-23
795 commits to main branch, last one a day ago
PlumHound
PlumHound PlumHound
111
1.1k
gpl-3.0
38
Bloodhound Reporting for Blue and Purple Teams
neo4j active infosec redteam blueteam bluehound directory bloodhound purpleteam attack-paths bloodhoundad cypher-query purple-teams reporting-tool activedirectory plumhound-tasks active-directory bloodhoundad-cypher-queries bloodhoundad-pathfinding-engine
Created 2020-05-01
411 commits to master branch, last one about a month ago
FalconForceTeam
FalconFriday FalconForceTeam
79
730
bsd-3-clause
57
Hunting queries and detections
kql hunting blueteam sentinel purpleteam defender-atp defender-for-endpoint
Created 2020-08-04
99 commits to main branch, last one 2 months ago
ch33r10
EnterprisePurpleTeaming ch33r10
93
642
mit
25
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
redteam red-team adversary purpleteam purple-team adversaryemulation adversary-emulation adversary-simulation
Created 2021-06-19
73 commits to main branch, last one about a year ago
scythe-io
purple-team-exercise-framework scythe-io
100
624
mit
31
Purple Team Exercise Framework
ptef redteam blueteam purpleteam adversaryemulation adversarysimulation purpleteamexerciseframework
Created 2020-07-22
35 commits to master branch, last one about a year ago
bluecapesecurity
PWF bluecapesecurity
107
617
agpl-3.0
19
Practical Windows Forensics Training
blueteam forensics purpleteam cybersecurity
Created 2022-02-13
70 commits to main branch, last one 8 months ago
iknowjason
PurpleCloud iknowjason
93
528
mit
24
A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4
dfir siem azure pentest azure-lab purpleteam dfir-automation
Created 2020-06-23
309 commits to master branch, last one 8 days ago
idnahacks
GoodHound idnahacks
41
450
unknown
9
Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.
neo4j py2neo python python3 redteam blueteam bloodhound purpleteam cybersecurity activedirectory active-directory
Created 2021-10-14
173 commits to main branch, last one 4 months ago
PaperMtn
slack-watchman PaperMtn
39
366
gpl-3.0
10
Slack enumeration and exposed secrets detection tool
slack tools infosec redteam blueteam red-team blue-team slack-api monitoring purpleteam purple-team cybersecurity slack-workspaces
Created 2020-04-26
303 commits to master branch, last one 13 hours ago
DefensiveOrigins
AtomicPurpleTeam DefensiveOrigins
36
283
gpl-3.0
21
Atomic Purple Team Framework and Lifecycle
attack hunting famework lifecycle purpleteam attack-defense attack-detection lifecycle-management
Created 2020-07-16
10 commits to master branch, last one 3 years ago
Ziconius
FudgeC2 Ziconius
51
245
gpl-3.0
14
FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
c2 implant python3 redteam security powershell purpleteam readteaming cybersecurity security-tools post-exploitation offensive-security command-and-control
Created 2018-09-09
193 commits to main branch, last one 2 years ago
AnLoMinus
Diablo AnLoMinus
30
199
unknown
8
Diablo ~ Hacking / Pentesting & Reporting
diablo hacking redteam blueteam portscan reporter scanning reporting pentesting purpleteam portscanner
Created 2022-05-20
111 commits to main branch, last one about a year ago
PaperMtn
gitlab-watchman PaperMtn
27
196
gpl-3.0
8
Finding exposed secrets and personal data in GitLab
dlp tools gitlab infosec redteam blueteam red-team blue-team gitlab-api monitoring purpleteam purple-team cybersecurity gitlab-watchman data-loss-prevention
Created 2020-09-14
116 commits to master branch, last one 2 days ago
darmado
Atomic-Red-Team-C2 darmado
22
171
unknown
7
ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.
csharp dotnet python3 redteam red-teams purpleteam purple-team mitre-attack post-exploitation offensive-security powershell-scripts
Created 2020-11-23
47 commits to master branch, last one 2 months ago
DefensiveOrigins
APT-Lab-Terraform DefensiveOrigins
33
158
gpl-3.0
12
Purple Teaming Attack & Hunt Lab - Terraform
labs azure terraform purpleteam
Created 2020-07-12
50 commits to master branch, last one 3 years ago
mthcht
Purpleteam mthcht
18
158
unknown
8
Purpleteam scripts simulation & Detection - trigger events for SOC detections
ioc soc siem linux awesome redteam tactics windows blueteam security detection purpleteam simulation techniques awesome-list mitre-attack threathunting threat-hunting offensive-scripts detection-engineering
Created 2022-12-05
721 commits to main branch, last one 10 days ago
TH3xACE
EDR-Test TH3xACE
19
146
unknown
4
Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
edr purpleteam purple-team cobaltstrike mitre-attack cobalt-strike aggressor-scripts
Created 2022-03-27
45 commits to main branch, last one about a year ago
cr0nx
awesome-linux-attack-forensics-purplelabs cr0nx
20
126
gpl-3.0
7
This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.
dfir linux redteam rootkit blueteam detection injection purplelabs purpleteam attack-defense
Created 2023-02-13
33 commits to main branch, last one about a year ago
iknowjason
BlueCloud iknowjason
28
125
mit
7
Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
dfir blue-team cyberrange pentesting purpleteam cyber-range edr-testing dfir-automation
Created 2021-04-02
77 commits to master branch, last one 2 years ago
purpleteam-labs
purpleteam purpleteam-labs
15
124
other
4
CLI component of OWASP PurpleTeam
ci cli devsecops build-tool purpleteam web-security hacktoberfest cloud-security security-testing devsecops-pipeline application-security security-regression-testing
Created 2018-08-26
371 commits to main branch, last one 11 months ago
Viralmaniar
MurMurHash Viralmaniar
18
114
mit
4
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
infosec redteam blueteam phishing murmurhash purpleteam redteaming blueteaming murmurhash3 threatintel cybersecurity threathunting security-tools phishing-detection proactive-security threatintelligence threat-intelligence
Created 2021-04-27
12 commits to main branch, last one 3 years ago
mikeprivette
NIST-to-Tech mikeprivette
14
109
gpl-3.0
7
An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
nist netsec infosec pentest redteam blueteam nist-csf nist800-53 pentesting purpleteam netsecurity netsec-tools cybersecurity vulnerability cyber-security infosec-approved pentesting-tools infosec-reference cyber-security-team nist-cybersecurity-framework
Created 2020-10-22
45 commits to main branch, last one 4 months ago
jwillyamz
ezEmu jwillyamz
10
102
apache-2.0
9
See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
purpleteam mitre-attack linux-security security-testing adversary-emulation
Created 2020-05-24
44 commits to master branch, last one about a year ago
ziesemer
ad-privileged-audit ziesemer
17
87
unknown
10
Provides various Windows Server Active Directory (AD) security-focused reports.
dfir auditing blueteam security forensics powershell purpleteam cybersecurity reporting-tool security-audit security-tools risk-assessment active-directory system-hardening account-management security-hardening information-gathering security-auditing-tool
Created 2021-04-05
97 commits to main branch, last one about a month ago
netsecurity-as
recon365 netsecurity-as
4
83
unknown
2
Gather information from an email address connected to Office 365
osint recon redteam blueteam purpleteam cybersecurity o365-security active-directory
Created 2023-02-28
8 commits to main branch, last one about a year ago