Alternatives and similar repositories for blue

Users that are interested in blue are comparing it to the libraries listed below

• averagesecurityguy / exfil
  Modular tool to test exfiltration techniques.
  ☆37Updated 8 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆20Updated 8 years ago
• mpars0ns / maltego_censys
  Basic Maltego Transforms for looking up SSL certs and IP info from censys.io
  ☆41Updated 8 years ago
• pwnwiki / dfirwiki
  Digital Forensics and Incident Response Wiki
  ☆40Updated 11 years ago
• da667 / ip2dns
  ☆48Updated 9 years ago
• grcninja / Small_Tasks
  Small scripts for doing repeatable tasks
  ☆25Updated 3 years ago
• andrewmichaelsmith / honeypot-setup-script
  Honeypot (Dionaea and kippo) setup script
  ☆84Updated 9 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆41Updated 5 years ago
• udishamir / Domain-Analyzer
  Detect malicious domain, Blablablablabla
  ☆26Updated 8 years ago
• jpyorre / IntelligentHoneyNet
  The Intelligent Honey Net Project attempts to create actionable information from honeypots
  ☆64Updated 10 years ago
• hiddenillusion / FileLookup
  Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)
  ☆30Updated 11 years ago
• SwiftOnLinux / SmokingLinuxEveryDay
  Smoking Linux Every Day!
  ☆56Updated 5 years ago
• exp0se / harbinger
  Harbinger Threat Intelligence
  ☆83Updated 10 years ago
• sensepost / autoresponder
  Quick python script to automatically load NTLM hashes from Responder logs and fires up Hashcat to crack them
  ☆80Updated 10 years ago
• ivanlei / threatbutt
  Threatbutt python client and Maltego transforms
  ☆51Updated last year
• brianwarehime / otx_transforms
  Transforms for the AlienVault OTX service
  ☆39Updated 9 years ago
• JamesHabben / sysmon-queries
  Queries to parse sysmon event log file with microsoft logparser
  ☆58Updated 10 years ago
• ch3k1 / squidmagic
  analyze a web-based network traffic 🕶 to detect central command and control servers
  ☆79Updated 7 years ago
• AlienVault-OTX / ThreatCrowd-Maltego
  Maltego transforms for the ThreatCrowd search API
  ☆49Updated 7 years ago
• michael-yip / ThreatTracker
  ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…
  ☆69Updated 10 years ago
• attactics / NMAPgrapher
  A tool to generate graph and other output from NMAP XML files
  ☆116Updated 6 years ago
• pwnwiki / msfwiki
  Metasploit Usage Wiki
  ☆47Updated 10 years ago
• pwnlandia / mhn-splunk
  Modern Honey Network App for Splunk
  ☆50Updated 6 years ago
• hashtagcyber / bropy
  Basic Anomaly IDS capabilities with Python and Bro
  ☆105Updated 7 years ago
• bandrel / OCyara
  Performs OCR on image files and scans them for matches to YARA rules
  ☆42Updated 7 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• cudeso / host-enrich
  Enrich a host with open source security information
  ☆27Updated 10 years ago
• sooshie / scrape_pdf
  Python script to pull various IOCs from PDFs
  ☆15Updated 10 years ago
• sketchymoose / TotalRecall
  Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…
  ☆49Updated 8 years ago