Trending repositories for topic blueteam

serve as a reverse proxy to protect your web services from attacks and exploits.

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台，为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境，主要用于Web站点的功能测试、安全测试和安全评估。

E-mails, subdomains and names Harvester - OSINT

HardeningKitty - Checks and hardens your Windows configuration

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Rapidly Search and Hunt through Windows Forensic Artefacts

Basic protection against HTML smuggling attempts.

Awesome Security lists for SOC/CERT/CTI

WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.

Tools and Techniques for Blue Team / Incident Response

A collection of awesome security hardening guides, tools and other resources

Cyber Security ALL-IN-ONE Platform

Adversary tradecraft detection, protection, and hunting

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

A fast and continuous secret scanner in Go

Awesome list of keywords and artifacts for Threat Hunting sessions

This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.

TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台，为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境，主要用于Web站点的功能测试、安全测试和安全评估。

Basic protection against HTML smuggling attempts.

A fast and continuous secret scanner in Go

serve as a reverse proxy to protect your web services from attacks and exploits.

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.

HardeningKitty - Checks and hardens your Windows configuration

Awesome Security lists for SOC/CERT/CTI

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Awesome list of keywords and artifacts for Threat Hunting sessions

WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.

Rapidly Search and Hunt through Windows Forensic Artefacts

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

E-mails, subdomains and names Harvester - OSINT

Tools and Techniques for Blue Team / Incident Response

Active Directory data ingestor for BloodHound Legacy written in Rust. 🦀

Adversary tradecraft detection, protection, and hunting

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

HardeningKitty and Windows Hardening Settings

A collection of awesome security hardening guides, tools and other resources

serve as a reverse proxy to protect your web services from attacks and exploits.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

E-mails, subdomains and names Harvester - OSINT

TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台，为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境，主要用于Web站点的功能测试、安全测试和安全评估。

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Cyber Security ALL-IN-ONE Platform

HardeningKitty - Checks and hardens your Windows configuration

Rapidly Search and Hunt through Windows Forensic Artefacts

Tools and Techniques for Blue Team / Incident Response

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

A collection of awesome security hardening guides, tools and other resources

Basic protection against HTML smuggling attempts.

Investigate malicious Windows logon by visualizing and analyzing Windows event log

Snoop — инструмент разведки на основе открытых данных (OSINT world)

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

A fast and continuous secret scanner in Go

You didn't think I'd go and leave the blue team out, right?

Adversary tradecraft detection, protection, and hunting

TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台，为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境，主要用于Web站点的功能测试、安全测试和安全评估。

Basic protection against HTML smuggling attempts.

A fast and continuous secret scanner in Go

serve as a reverse proxy to protect your web services from attacks and exploits.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

用于Linux应急响应，快速排查异常用户登录情况和入侵信息排查，准确定位溯源时间线，高效辅助还原攻击链。

HardeningKitty - Checks and hardens your Windows configuration

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Awesome Security lists for SOC/CERT/CTI

Utility to find hidden Linux kernel modules

Awesome list of keywords and artifacts for Threat Hunting sessions

A tool that shows detailed information about named pipes in Windows

Purple Team Exercise Framework

Hourly updated database of exploit and exploitation reports

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

Rapidly Search and Hunt through Windows Forensic Artefacts

Tools and Techniques for Blue Team / Incident Response

You didn't think I'd go and leave the blue team out, right?

serve as a reverse proxy to protect your web services from attacks and exploits.

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

E-mails, subdomains and names Harvester - OSINT

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Cyber Security ALL-IN-ONE Platform

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Rapidly Search and Hunt through Windows Forensic Artefacts

Tools and Techniques for Blue Team / Incident Response

TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台，为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境，主要用于Web站点的功能测试、安全测试和安全评估。

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

A collection of awesome security hardening guides, tools and other resources

Snoop — инструмент разведки на основе открытых данных (OSINT world)

A fast and continuous secret scanner in Go

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Awesome Security lists for SOC/CERT/CTI

HardeningKitty - Checks and hardens your Windows configuration

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Purple Team Exercise Framework

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

A fast and continuous secret scanner in Go

TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台，为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境，主要用于Web站点的功能测试、安全测试和安全评估。

Basic protection against HTML smuggling attempts.

This repo shares blue team security notes and resources for detecting and preventing cyber attacks. Topics covered include email, file, log, malware, memory forensics, and packet analysis.

yara detection rules for hunting with the threathunting-keywords project

serve as a reverse proxy to protect your web services from attacks and exploits.

Awesome Security lists for SOC/CERT/CTI

Hourly updated database of exploit and exploitation reports

Purple Team Exercise Framework

用于Linux应急响应，快速排查异常用户登录情况和入侵信息排查，准确定位溯源时间线，高效辅助还原攻击链。

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Purpleteam scripts simulation & Detection - trigger events for SOC detections

Awesome list of keywords and artifacts for Threat Hunting sessions

网络安全chatgpt指令集，训练chatgpt成为一名网络安全专家

Rapidly Search and Hunt through Windows Forensic Artefacts

A curated list of tools and resources that I use daily as a Purple-Team operator.

HardeningKitty - Checks and hardens your Windows configuration

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.

To audit the security of read-only domain controllers

TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台，为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境，主要用于Web站点的功能测试、安全测试和安全评估。

The repository is a valuable resource for individuals looking to enhance their knowledge and skills in cybersecurity. It provides in-depth materials and guides for various cybersecurity domains.

RouterOS Security Inspector

A fast and continuous secret scanner in Go

Basic protection against HTML smuggling attempts.

Offline command line tool that searches for GTFOBins binaries that can be used to bypass local security restrictions in misconfigured systems.

serve as a reverse proxy to protect your web services from attacks and exploits.

E-mails, subdomains and names Harvester - OSINT

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Cyber Security ALL-IN-ONE Platform

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

A collection of awesome security hardening guides, tools and other resources

Tools and Techniques for Blue Team / Incident Response

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Awesome Security lists for SOC/CERT/CTI

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Rapidly Search and Hunt through Windows Forensic Artefacts

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

用于Linux应急响应，快速排查异常用户登录情况和入侵信息排查，准确定位溯源时间线，高效辅助还原攻击链。

HardeningKitty - Checks and hardens your Windows configuration

HardeningKitty and Windows Hardening Settings

yara detection rules for hunting with the threathunting-keywords project

Awesome Security lists for SOC/CERT/CTI

This repo shares blue team security notes and resources for detecting and preventing cyber attacks. Topics covered include email, file, log, malware, memory forensics, and packet analysis.

To audit the security of read-only domain controllers

用于Linux应急响应，快速排查异常用户登录情况和入侵信息排查，准确定位溯源时间线，高效辅助还原攻击链。

RouterOS Security Inspector

A curated list of tools and resources that I use daily as a Purple-Team operator.

Awesome list of keywords and artifacts for Threat Hunting sessions

This repository stores various roadmap(Mindmaps) for bug bounty Hunter, pentester, offensive(red team), defensive(blue team) and security Professional people

serve as a reverse proxy to protect your web services from attacks and exploits.

Sigma detection rules for hunting with the threathunting-keywords project

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Powershell script deobfuscation using AST in Python

Purpleteam scripts simulation & Detection - trigger events for SOC detections

A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-Team defense under an active threat.

Hourly updated database of exploit and exploitation reports

Tools and Techniques for Blue Team / Incident Response

unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and...

NHSuite allows users to efficiently manage their QRadar Network Hierarchy. Utilizing the provided QRadar API, users can seamlessly export, import, and fetch domain information in a CSV format.

Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)