Collection of PowerShell functinos and scripts a Blue Teamer might use
☆88Oct 4, 2023Updated 2 years ago
Alternatives and similar repositories for PowerShell-Blue-Team
Users that are interested in PowerShell-Blue-Team are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommen…☆52Sep 14, 2025Updated 6 months ago
- This is a site I made for easily hosting tools and payload over apache2 on Kali Linux so they are always ready to go. These are a collect…☆17Jun 3, 2022Updated 3 years ago
- Collection of PowerShell functions a Red Teamer may use in an engagement☆547Dec 8, 2023Updated 2 years ago
- Sharing Threat Hunting runbooks☆25Jul 5, 2019Updated 6 years ago
- PowerShell Funcitons that can be used to help automate and troubleshoot Windows Updates☆17Feb 19, 2026Updated last month
- Some portable tools, some YARA, some Python, and a little bit of love. Not all of these tools can be used in incident response. Use PEs…☆39Apr 27, 2025Updated 10 months ago
- 🧰 Various PowerShell scripts for security, sysadmins, blue and red teams👫🏼☆54Aug 28, 2025Updated 6 months ago
- Functions that can be used to gain Reverse Shells with PowerShell☆83Sep 4, 2022Updated 3 years ago
- ATT&CK Remote Threat Hunting Incident Response☆206Dec 8, 2024Updated last year
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Jan 1, 2020Updated 6 years ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.☆40Mar 18, 2022Updated 4 years ago
- ☆50Dec 11, 2025Updated 3 months ago
- carcass is a Python package to generate python package scaffolding based on best practices☆17Jan 10, 2022Updated 4 years ago
- A collection of searches, interesting events and tables on Crowdstrike Splunk.☆30Mar 2, 2021Updated 5 years ago
- Repository for all cbapi example scripts☆16Sep 18, 2018Updated 7 years ago
- ☆134Mar 21, 2024Updated 2 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Sep 17, 2025Updated 6 months ago
- ☆17Dec 18, 2025Updated 3 months ago
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago
- incident response scripts☆18Mar 4, 2019Updated 7 years ago
- ☆56Jun 12, 2021Updated 4 years ago
- A curated list of FOSS software appliances for building a SOC☆18Jan 11, 2021Updated 5 years ago
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆158Nov 30, 2021Updated 4 years ago
- The Infosec Community Definitive Guide to Jupyter Notebooks☆132Oct 17, 2020Updated 5 years ago
- An IOC framework written in PowerShell☆19Jan 3, 2017Updated 9 years ago
- Collection of bash scripts I wrote to make my life easier or test myself that you may find useful.☆39Jun 15, 2024Updated last year
- Presentation Slides☆26Jun 7, 2019Updated 6 years ago
- PowerShell Scripts☆26Jul 12, 2011Updated 14 years ago
- Set of utilities for getting information about Windows Events☆15Jun 5, 2018Updated 7 years ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆196Dec 20, 2024Updated last year
- 2021 SANS DFIR Summit: Greppin' Logs☆20Oct 30, 2025Updated 4 months ago
- Find your router's default password☆14Apr 7, 2015Updated 10 years ago
- Searching .evtx logs for remote connections☆24Jul 6, 2023Updated 2 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆37Jul 11, 2023Updated 2 years ago
- Kibana app for RedELK☆18Mar 19, 2023Updated 3 years ago
- abuse Pureftpd FXP to obtain the ipv6 of the target server☆11Jun 4, 2021Updated 4 years ago
- Test Blue Team detections without running any attack.☆272May 2, 2024Updated last year
- PowerShell tool to triage systems☆12May 17, 2023Updated 2 years ago