soc-otter / BlueLinks
A collection of content for blue team professionals, designed to support both reactive and proactive cybersecurity measures of every aspect.
☆34Updated 2 months ago
Alternatives and similar repositories for Blue
Users that are interested in Blue are comparing it to the libraries listed below
Sorting:
- ☆24Updated 6 months ago
- ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…☆105Updated 5 months ago
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆91Updated 11 months ago
- ☆155Updated 2 months ago
- Azure Post Exploitation Framework☆204Updated 5 months ago
- Collect infrastructure and permissions data from vCenter and export it as a BloodHound‑compatible graph using Custom Nodes/Edges☆68Updated last week
- An Infrastructure as code proof of concept to deploy a bare minimum AD environment in AWS.☆39Updated last month
- Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit☆150Updated 8 months ago
- Azure AppHunter is an open-source tool created for security researchers, red teamers and defenders to help them identify excessive privil…☆40Updated last week
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆82Updated last year
- Parses Snaffler output file and generate beautified outputs.☆106Updated 7 months ago
- VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …☆144Updated 3 weeks ago
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆167Updated 10 months ago
- This repository contains a comprehensive testing designed for evaluating the performance and resilience of Endpoint Detection and Respons…☆57Updated 10 months ago
- ☆158Updated 6 months ago
- This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe☆34Updated last year
- Persist like a Dodder☆63Updated 3 months ago
- Python utility that generates "imageless" QR codes in various formats☆125Updated last year
- BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…☆84Updated this week
- ☆112Updated last month
- A community-driven collection of BloodHound queries☆120Updated this week
- Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.☆42Updated 7 months ago
- A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files☆127Updated last year
- 🌩️ Collection of BloodHound queries for Azure☆75Updated 7 months ago
- Audits an AppLocker policy XML and reports weak/misconfigured/risky settings, including actual ACL checks.☆33Updated this week
- AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…☆83Updated 3 weeks ago
- This script analyzes the DCSync output file from several tools (such as Mimikatz, Secretsdump and SharpKatz...)☆51Updated 5 months ago
- With zero dependencies, NetCredz extracts credentials from pcap files or live traffic, supporting NTLM, LDAP, HTTP, SMTP, SNMP, Telnet, F…☆67Updated 8 months ago
- ☆179Updated 8 months ago
- Malware As A Service☆135Updated last year