My external brain for cyber defense (WIP). A practical collection of field notes on hunting strategies and system principles. Documenting defensive mechanics and methods as I build this long-term library.
☆58Updated this week
Alternatives and similar repositories for Blue_Team_Hunting_Field_Notes
Users that are interested in Blue_Team_Hunting_Field_Notes are comparing it to the libraries listed below
Sorting:
- A PowerShell-based script to analyze network logs from CSV files and detect potential beaconing behavior. Supports VirusTotal integration…☆17May 11, 2025Updated 9 months ago
- Advanced Threat Hunting: Ransomware Group☆29Jul 9, 2025Updated 7 months ago
- ☆19Mar 13, 2024Updated last year
- ☆36Updated this week
- A collection of powershell scripts that are designed to be ran from a Microsoft Defender for Endpoint Live Response terminal, utilizing o…☆12Apr 26, 2023Updated 2 years ago
- Your Browser-based EVTX Companion☆112Feb 8, 2026Updated 2 weeks ago
- Command generator for pentesting tools☆17Dec 2, 2024Updated last year
- bitCollector - DFIR (Digital Forensics and Incident Response) Triage Collector☆13Aug 18, 2025Updated 6 months ago
- A Shiny Web App tutorial inspecting the COVID-19 (2019-nCoV) epidemic, data from https://github.com/CSSEGISandData/COVID-19/tree/master/c…☆10Apr 18, 2020Updated 5 years ago
- Sysmon Config Pusher - Modernized☆33Jan 7, 2026Updated last month
- PowerShell-based Windows Server Security Audit Engine by Cyb3rint3l Labs. Measures alignment with the NIS2 directive and maps findings to…☆40Feb 1, 2026Updated 3 weeks ago
- Next major release of sniffMyPackets - Now with added packet loving☆12Mar 19, 2015Updated 10 years ago
- ☆11Jun 15, 2022Updated 3 years ago
- Python based Office Macro Generator. Also does rudamentary obfuscation.☆12Jun 6, 2016Updated 9 years ago
- AzureLogLibrary - repository used for Azure logging with ARM-templates, scripts, documentation to deploy DCRs, extensions, etc☆14Aug 11, 2023Updated 2 years ago
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 3 years ago
- This repository contains tools for decrypting and viewing iOS iTunes Backup files, along with code to extract and analyze various artifac…☆24Jul 27, 2025Updated 7 months ago
- ☆16Mar 22, 2023Updated 2 years ago
- Obsidian vault notes collection on Ethical Hacking Tools and Techniques, HackTheBox, and HTB Academy☆10Aug 15, 2023Updated 2 years ago
- Random scripts that I used in the CARTP course lab & final exam.☆14Feb 28, 2024Updated last year
- iPhone Forensics Tool☆16Nov 29, 2024Updated last year
- 🔍 erroreyes – Lightweight Subdomain Enumeration Tool A Python-based tool that queries crt.sh certificate logs to discover subdomains ass…☆16May 8, 2025Updated 9 months ago
- A Go library for accessing the CeX trade store products API☆12Jan 8, 2023Updated 3 years ago
- ☆15Oct 3, 2024Updated last year
- Process hunting Toolkit is toolkit capable of hunting down malicious processes on Windows☆14Jan 31, 2025Updated last year
- ☆15Jan 9, 2026Updated last month
- Threat Simulator for Enterprise Networks☆14May 14, 2022Updated 3 years ago
- 반려견의 슬기로운 산책 생활을 위해! 🐕☆13Dec 5, 2024Updated last year
- YARA, SIGMA, SNORT Rules based on Malware Analysis☆16Apr 23, 2025Updated 10 months ago
- Sabonis, a Digital Forensics and Incident Response pivoting tool☆18Mar 3, 2022Updated 3 years ago
- 내가 꾸미는 친구의 공간 PADO☆16Jun 14, 2024Updated last year
- Parser for Windows Scheduled Task files.☆13Apr 26, 2023Updated 2 years ago
- Website for ail-typo-squatting library☆71Feb 11, 2026Updated 2 weeks ago
- ☆15Aug 7, 2021Updated 4 years ago
- EventLogSilencer is a PowerShell script designed for disable Windows Event Logging☆18Oct 28, 2023Updated 2 years ago
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆179Jan 20, 2026Updated last month
- Super light, super fast, unlimited search idea☆25Aug 3, 2025Updated 6 months ago
- A collection of OSINT websites and tools to aid penetration testers with their info gathering tasks☆17Oct 27, 2024Updated last year
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago