☆17Aug 27, 2022Updated 3 years ago
Alternatives and similar repositories for blue_team_con
Users that are interested in blue_team_con are comparing it to the libraries listed below
Sorting:
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Mar 25, 2024Updated last year
- Azure AD Incident Response☆27Oct 8, 2021Updated 4 years ago
- EnumVolcano is an open source Bash script which is used to perform automated enumeration for privilege escalation. This tool is dedicated…☆23May 8, 2022Updated 3 years ago
- Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …☆59Sep 15, 2022Updated 3 years ago
- A community event for security researchers to share their favorite notebooks☆108Feb 15, 2024Updated 2 years ago
- ☆34Jun 13, 2023Updated 2 years ago
- This provides a guided step by step walkthrough for threat modeling with MITRE ATT&CK Framework☆30Jan 7, 2026Updated last month
- The Intelligent Process Lifecycle of Active Cyber Defenders☆33Jan 1, 2023Updated 3 years ago
- Elastic version of SOC prime watcher rules☆30Oct 14, 2024Updated last year
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Jan 31, 2022Updated 4 years ago
- ☆12Updated this week
- MSTIC Notebook Components☆35Sep 4, 2025Updated 5 months ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆208Jul 21, 2022Updated 3 years ago
- Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…☆38Apr 5, 2024Updated last year
- Repo for my scripts that I've made for work done, not all are functional, some are abandoned or WIP.☆10Jan 9, 2026Updated last month
- Automation around Entra ID☆38Jul 21, 2025Updated 7 months ago
- Mac Scripts☆10Jul 16, 2020Updated 5 years ago
- ☆12Mar 31, 2025Updated 11 months ago
- A repository of my own Sigma detection rules.☆163Nov 25, 2025Updated 3 months ago
- ☆11Nov 10, 2020Updated 5 years ago
- A cross-platform Golang GUI library. Use Delphi VCL and Lazarus LCL for binding.☆10Jan 22, 2019Updated 7 years ago
- A template for projects using both libPeConv and MS Detours☆16Oct 5, 2025Updated 4 months ago
- Various shellcodes☆12Sep 1, 2020Updated 5 years ago
- PowerShell module for collecting and sending Open Telemetry☆10Dec 24, 2024Updated last year
- Packet Analysis on Steroids☆13Oct 20, 2022Updated 3 years ago
- ☆17Updated this week
- ☆13Aug 17, 2020Updated 5 years ago
- ☆12Apr 6, 2017Updated 8 years ago
- Silent Cleanup UAC Bypass POC☆11Dec 15, 2019Updated 6 years ago
- File indexer with semantic search, hybrid retrieval, and multi-step reasoning agents☆20Jan 17, 2026Updated last month
- A bunch of library code that can easily be included in new/prototype projects with few (usually zero) dependencies, even on themselves.☆12Jul 26, 2020Updated 5 years ago
- Codebase for VideoConviction, accepted at KDD 2025 (D&B Track)☆18Jan 22, 2026Updated last month
- Recordization library☆11Updated this week
- Windows Syslog Command Line Client☆15Nov 21, 2012Updated 13 years ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆14Aug 11, 2023Updated 2 years ago
- Unofficial. Splunk MCP server. Implemented in Python and TypeScript/JS. Runs searches, queries Splunk, and outputs data as JSON, CSV, or …☆27Jun 16, 2025Updated 8 months ago
- ☆12Oct 9, 2022Updated 3 years ago
- INACTIVE - Experiment: A light-weight agent to get a port scan perspective into a useable place/format for security operations☆14Apr 10, 2023Updated 2 years ago
- Metarget技术交流群分享内容定期存档☆12Oct 22, 2021Updated 4 years ago