Alternatives and similar repositories for blue

Users that are interested in blue are comparing it to the libraries listed below

• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆63Updated last month
• humanaoffsec / raccoon-infostealer-emulation
  Recreation of most of the Raccoon Infostealer's functionality, true to threat intelligence, for safe testing in organizational environmen…
  ☆19Updated last year
• jaredcatkinson / MalwareMorphology
  ☆81Updated 7 months ago
• yoda66 / PythonShellcodeRedux
  ☆12Updated last year
• CroodSolutions / BypassIT
  BypassIT is a framework for covert malware delivery and post-exploitation using AutoIT for red / blue team self assessment.
  ☆39Updated last week
• referefref / Rusty-Telephone
  Exfiltrate data over audio output from remote desktop sessions - Covert channel PoC
  ☆61Updated 7 months ago
• lewiswigmore / Virus.xcheck
  Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs…
  ☆55Updated 3 months ago
• jstrosch / FLARE-VM-configs
  These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…
  ☆14Updated last year
• krdmnbrk / atomicgen.io
  A simple tool designed to create Atomic Red Team tests with ease.
  ☆44Updated 4 months ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆38Updated 3 years ago
• infosecn1nja / Invoke-AtomicAssessment
  Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.
  ☆41Updated 5 months ago
• redr0nin / Signal-DLL-Hijacking
  DLL Malware for Signal Desktop. Now utilizes missing dbghelp.dll since Signal patched cryptbase.
  ☆14Updated 5 months ago
• chipmanfu / Cyber-Range
  create a "simulated internet" cyber range environment
  ☆17Updated last month
• MazX0p / CobaltSentry
  ☆24Updated 5 months ago
• MikeHorn-git / WAFS
  Hardened your Windows OS against forensics analysis
  ☆21Updated 7 months ago
• som3canadian / Mythic_NimSyscallPacker_Wrapper
  Mythic C2 wrapper for NimSyscallPacker
  ☆25Updated 4 months ago
• BushidoUK / MITRE-Mappings
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆25Updated 3 months ago
• ashemery / Anti-Forensics
  A Repository to Track Anti-Forensic Techniques
  ☆110Updated 2 years ago
• outflanknl / Training-MSOfficeOffensiveTradecraft
  Info related to the Outflank training: Microsoft Office Offensive Tradecraft
  ☆52Updated last year
• danzek / awesome-lol-commonly-abused
  Awesome list of Living off the Land (LOL) methods, tools, and features commonly abused by attackers
  ☆24Updated 3 months ago
• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆39Updated 5 years ago
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆27Updated last year
• SafeBreach-Labs / aikido_wiper
  ☆67Updated 2 years ago
• tnkr / poc_monitor
  A short scraper looking for a POC of CVE-2024-49112
  ☆15Updated 7 months ago
• S3N4T0R-0X0 / APT28-Adversary-Simulation
  This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe
  ☆34Updated last year
• red-team-offense-village / redteamvillage_website
  The source code of the DEF CON Red Team Offense Village website
  ☆9Updated 3 months ago
• eric-conrad / c2-talk
  ☆37Updated last year
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆37Updated 4 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆49Updated 6 months ago
• Neo23x0 / tiny-shells
  All kinds of tiny shells
  ☆58Updated 2 years ago