A collection of content for blue team professionals, designed to support both reactive and proactive cybersecurity measures of every aspect.
☆33Apr 2, 2026Updated last month
Alternatives and similar repositories for Blue
Users that are interested in Blue are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ETW forensic tool for Volatility3 plugin☆17Nov 15, 2024Updated last year
- ☆12Jul 15, 2022Updated 3 years ago
- Microsoft-Defender-for-IoT☆14May 26, 2025Updated last year
- A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…☆17Jan 28, 2026Updated 4 months ago
- Generate Volatility3 profiles from BTF.☆33Dec 21, 2024Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Repo to hold my PowerShell Scripts☆17Oct 19, 2022Updated 3 years ago
- With zero dependencies, NetCredz extracts credentials from pcap files or live traffic, supporting NTLM, LDAP, HTTP, SMTP, SNMP, Telnet, F…☆79Dec 2, 2024Updated last year
- SATO is a PowerShell tool focuses on providing flexible, multi-grant type support for obtaining, managing, and analyzing Azure tokens.☆24Nov 24, 2025Updated 6 months ago
- testing123☆14Nov 23, 2024Updated last year
- Research into Undocumented Behavior of Azure AD Refresh Tokens☆13Oct 27, 2023Updated 2 years ago
- Regex based secret scanner for sccm deployment points sccmcontentlib$ shares. Find secrets automatically and download entire packages for…☆18Aug 13, 2025Updated 9 months ago
- string/file/shellcode encryptor using AES/XOR☆11Oct 15, 2023Updated 2 years ago
- Invanti VPN Vulnerabilities for Jan - Feb 2024 - Links to Keep it all Organized☆16Feb 15, 2024Updated 2 years ago
- Token impersonation in PowerShell to execute under the context of another user.☆25Oct 14, 2025Updated 7 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A framework and taxonomy for identifying, classifying, and reasoning about detection logic bugs in SIEM, EDR, and XDR rules, with concret…☆52Mar 5, 2026Updated 2 months ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆57Jul 2, 2023Updated 2 years ago
- ☆16Sep 5, 2024Updated last year
- Repository for Software Certs for easy software blocking across corp environments, for example, using MDE IOC☆70May 19, 2026Updated last week
- A curated list of Hardware Hacking resources☆12Apr 14, 2020Updated 6 years ago
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- Azure AppHunter is an open-source tool created for security researchers, red teamers and defenders to help them identify excessive privil…☆104Feb 25, 2026Updated 3 months ago
- ☆10Jul 1, 2023Updated 2 years ago
- A simple apple crash report parser for rust☆26Mar 25, 2026Updated 2 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- decrypt TLS traffic of arbitrary go binaries using SSLKEYLOGFILE debugger hook☆16Oct 24, 2021Updated 4 years ago
- ☆13Dec 10, 2020Updated 5 years ago
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.☆96Dec 29, 2025Updated 5 months ago
- A tiny tool built to help AD Admins tame the Protected Users group.☆142Mar 22, 2026Updated 2 months ago
- A Golang CLI for the MITRE ATT&CK Framework☆14Apr 28, 2025Updated last year
- ☆34Jun 13, 2023Updated 2 years ago
- RDLL for Cobalt Strike beacon to silence sysmon process☆92Sep 9, 2022Updated 3 years ago
- BAADTokenBroker is a post-exploitation tool designed to interact with Microsoft Entra ID device-bound keys.☆81Apr 11, 2026Updated last month
- Heap encryption in Nim☆21Aug 25, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defense…☆74Jun 28, 2021Updated 4 years ago
- A summary of NSO Group/Circles documents, research and media clippings.☆12Apr 13, 2024Updated 2 years ago
- An open-source, cross-platform application for Acorn ADFS and DFS disc image manipulation☆14Apr 10, 2018Updated 8 years ago
- EnumDNS is a modular DNS reconnaissance tool capable of resolving hosts from various sources, including wordlists, BloodHound files, and …☆21Mar 9, 2026Updated 2 months ago
- ☆12Oct 21, 2021Updated 4 years ago
- Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.☆86Jul 11, 2025Updated 10 months ago
- CVE-2025-22457: Python Exploit POC Scanner to Detect Ivanti Connect Secure RCE☆19Apr 17, 2025Updated last year