Alternatives and similar repositories for blue

Users that are interested in blue are comparing it to the libraries listed below

• jonny-jhnson / JonMon
  ☆249Updated 7 months ago
• RussianPanda95 / Yara-Rules
  Repository of Yara Rules
  ☆133Updated last week
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆143Updated 3 weeks ago
• rad9800 / PMD
  ☆157Updated 8 months ago
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆154Updated last month
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆91Updated last year
• PaloAltoNetworks / Unit42-Threat-Intelligence-Article-Information
  This is the repository for indicators of compromise (IOCs) and other data for threat intelligence articles posted on the Palo Alto Networ…
  ☆109Updated last month
• ArtemBaranov / WindowsRootkitsGuide
  ☆72Updated 11 months ago
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆183Updated 2 years ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆127Updated last year
• vxunderground / OCRMe
  Tool designed to exfiltrate OneDrive Business OCR Data
  ☆125Updated 11 months ago
• winsecurity / MaleficentVM
  This is practice VM for malware development
  ☆174Updated last month
• archcloudlabs / HackSpaceCon_Malware_Analysis_Course
  Free training course offered at Hack Space Con 2023
  ☆138Updated 2 years ago
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆150Updated last year
• ExaTrack / Kdrill
  Python tool to check rootkits in Windows kernel
  ☆204Updated 4 months ago
• trustedsec / The_Shelf
  Retired TrustedSec Capabilities
  ☆248Updated this week
• infosecn1nja / VeilTransfer
  VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …
  ☆150Updated 2 weeks ago
• Ahmed-AL-Maghraby / Windows-Registry-Analysis-Cheat-Sheet
  ☆171Updated 2 years ago
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆128Updated 2 months ago
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated last year
• nikhilh-20 / ELFEN
  ELFEN: Automated Linux Malware Analysis Sandbox
  ☆132Updated 4 months ago
• CroodSolutions / AutoPwnKey
  AutoPwnKey is a red teaming framework and testing tool using AutoHotKey (AHK), which at the time of creation proves to be quite evasive. …
  ☆109Updated 5 months ago
• airbus-cert / minusone
  Powershell Linter
  ☆86Updated last month
• Neo23x0 / tiny-shells
  All kinds of tiny shells
  ☆65Updated 2 years ago
• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆73Updated last month
• dahvidschloss / CRASH
  Completely Risky Active-Directory Simulation Hub
  ☆102Updated 2 years ago
• itaymigdal / malware-analysis-writeups
  Some of my Malware Analysis writeups
  ☆48Updated 3 months ago
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆39Updated 10 months ago
• adanalvarez / AWS-malware-lab
  Creation of a laboratory for malware analysis in AWS
  ☆104Updated 3 years ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆69Updated last year