simeononsecurity / Blue-Team-ToolsLinks
A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-Team defense under an active threat.
☆103Updated last year
Alternatives and similar repositories for Blue-Team-Tools
Users that are interested in Blue-Team-Tools are comparing it to the libraries listed below
Sorting:
- Collection of PowerShell functinos and scripts a Blue Teamer might use☆87Updated 2 years ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆48Updated 4 months ago
- A list of resources to build a information security team.☆13Updated 4 years ago
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆54Updated 3 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆49Updated last year
- Fast IOC and YARA Scanner☆84Updated 5 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆76Updated 2 weeks ago
- an awesome list of active defense resources☆126Updated 5 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago
- Cheat sheets for threat hunting, detection and other stuff.☆34Updated 3 years ago
- A GUI to query the API of abuse.ch.☆70Updated 3 years ago
- Digital Forensics Artifacts Knowledge Base☆86Updated 2 weeks ago
- ☆67Updated last month
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆65Updated 3 years ago
- Search a filesystem for indicators of compromise (IoC).☆81Updated last week
- Blue Team detection lab created with Terraform and Ansible in Azure.☆166Updated 11 months ago
- ☆53Updated 2 years ago
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆39Updated 4 years ago
- A MITRE ATT&CK Lookup Tool☆45Updated last year
- A curated list of KAPE-related resources☆175Updated 5 months ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆159Updated 6 months ago
- Dictionary of CTI-related acronyms, terms, and jargon☆144Updated last year
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆112Updated 3 years ago
- This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…☆34Updated 6 months ago
- This repository contains Splunk queries to hunt some anomalies☆44Updated 3 years ago
- A collection of various SIEM rules relating to malware family groups.☆70Updated last year
- A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub☆82Updated 2 months ago
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆78Updated 4 years ago
- ☆19Updated 3 years ago
- Incident Response with Threat Intelligence, published by Packt☆55Updated last year