My external brain for cyber defense (WIP). A practical collection of field notes on hunting strategies and system principles. Documenting defensive mechanics and methods as I build this long-term library.
☆98Apr 22, 2026Updated last week
Alternatives and similar repositories for Blue_Team_Hunting_Field_Notes
Users that are interested in Blue_Team_Hunting_Field_Notes are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A PowerShell-based script to analyze network logs from CSV files and detect potential beaconing behavior. Supports VirusTotal integration…☆17May 11, 2025Updated 11 months ago
- Packet Monkey is a tool to filter and classify PCAPs using Wireshark filters☆11Feb 27, 2026Updated 2 months ago
- Windows Thingies in Python for live use.☆24Apr 22, 2019Updated 7 years ago
- The GDPR-compliant Privacy Policy template/sample provided at https://gdpr.eu, adapted into markdown format.☆13May 25, 2021Updated 4 years ago
- Advanced Threat Hunting: Ransomware Group☆28Jul 9, 2025Updated 9 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 4 years ago
- Parses the WMI object database....looking for persistence☆35Dec 12, 2019Updated 6 years ago
- Automating the baseline logging settings found here: https://nullsec.us/windows-baseline-logging/☆20Jan 28, 2025Updated last year
- A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.☆73Jul 23, 2025Updated 9 months ago
- ☆36Aug 7, 2021Updated 4 years ago
- Windows Privilege Escalation☆24Jun 7, 2022Updated 3 years ago
- ☆37Mar 2, 2026Updated last month
- Penetration Testing MCP for Claude Code. AI-assisted security testing with automated recon, service enumeration, and reporting.☆49Apr 20, 2026Updated last week
- Suricata rules for SCADA☆16Jun 4, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆19Mar 13, 2024Updated 2 years ago
- Command generator for pentesting tools☆17Dec 2, 2024Updated last year
- ☆22May 1, 2025Updated 11 months ago
- Sabonis, a Digital Forensics and Incident Response pivoting tool☆19Mar 3, 2022Updated 4 years ago
- Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.☆11Nov 4, 2022Updated 3 years ago
- iPhone Forensics Tool☆16Nov 29, 2024Updated last year
- Your Browser-based EVTX Companion☆118Mar 2, 2026Updated last month
- Next major release of sniffMyPackets - Now with added packet loving☆12Mar 19, 2015Updated 11 years ago
- Sample SecOps scripts and Utilities☆12Jun 19, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A Security Operations playbook to assist blue teamers from day-to-day tasks to Digital Forensics and Incident Response (DFIR) activities.☆22Apr 21, 2026Updated last week
- Blogseries on DevOps☆13Oct 19, 2023Updated 2 years ago
- PowerShell-based Windows Server Security Audit Engine by Cyb3rint3l Labs. Measures alignment with the NIS2 directive and maps findings to…☆44Feb 1, 2026Updated 2 months ago
- A collection of powershell scripts that are designed to be ran from a Microsoft Defender for Endpoint Live Response terminal, utilizing o…☆12Apr 26, 2023Updated 3 years ago
- 어서오세요 빵집입니다 🧑🍳☆16Jan 20, 2025Updated last year
- Examples of OpenPLC IEC 61131-3 Editor with CONTROLLINO☆21Dec 6, 2024Updated last year
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆195Apr 1, 2026Updated 3 weeks ago
- Extensible MacOS system telemetry generator.☆56Apr 12, 2026Updated 2 weeks ago
- A Shiny Web App tutorial inspecting the COVID-19 (2019-nCoV) epidemic, data from https://github.com/CSSEGISandData/COVID-19/tree/master/c…☆10Apr 18, 2020Updated 6 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆11Jun 15, 2022Updated 3 years ago
- ☆13Apr 6, 2016Updated 10 years ago
- Understanding and analyzing carrier files workshop repo☆51Dec 4, 2019Updated 6 years ago
- Code for profiling sandboxes - Initially an idea to profile sandboxes, the code is written to take enviromental variables and send them b…☆30Dec 7, 2025Updated 4 months ago
- YARA, SIGMA, SNORT Rules based on Malware Analysis☆17Apr 23, 2025Updated last year
- This repository contains tools for decrypting and viewing iOS iTunes Backup files, along with code to extract and analyze various artifac…☆25Jul 27, 2025Updated 9 months ago
- A series of python scripts to extract information from Dark Web Applications☆14Mar 26, 2025Updated last year