Python Blueteam

Open-source Python projects categorized as Blueteam

Top 21 Python Blueteam Projects

  • theHarvester

    E-mails, subdomains and names Harvester - OSINT

    Project mention: Search for sensitive data using theHarvester and h8mail tools | dev.to | 2023-12-01
  • DefaultCreds-cheat-sheet

    One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

  • WorkOS

    The modern API for authentication & user identity. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  • snoop

    Snoop — инструмент разведки на основе открытых данных (OSINT world)

    Project mention: Osint update of the Snoop Project tool search for user by nickname | news.ycombinator.com | 2024-01-02
  • PlumHound

    Bloodhound for Blue and Purple Teams

    Project mention: Dealing with large BloodHound datasets | dev.to | 2023-12-06

    Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/

  • Hunting-Queries-Detection-Rules

    KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

    Project mention: Advanced Hunting queries every admin should use | /r/DefenderATP | 2023-05-29
  • SlackPirate

    Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace

  • GoodHound

    Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.

    Project mention: Dealing with large BloodHound datasets | dev.to | 2023-12-06

    Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/

  • LearnThisRepo.com

    Learn 300+ open source libraries for free using AI. LearnThisRepo lets you learn 300+ open source repos including Postgres, Langchain, VS Code, and more by chatting with them using AI!

  • LOOBins

    Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" macOS binaries and how they can be used by threat actors for malicious purposes.

    Project mention: LOOBins | news.ycombinator.com | 2023-05-25

    I’m excited to announce the release of Living Off the Orchard: macOS Binaries (LOOBins)!

    LOOBins is a resource designed to help cybersecurity professionals and researchers understand and defend against the potential risks associated with binaries built into macOS.

    https://loobins.io

  • slack-watchman

    Slack enumeration and exposed secrets detection tool

    Project mention: Slack Watchman - Version 4.0.0 Release | /r/netsec | 2023-05-13
  • boobsnail

    BoobSnail allows generating Excel 4.0 XLM macro. Its purpose is to support the RedTeam and BlueTeam in XLM macro generation.

  • inthewilddb

    Hourly updated database of exploit and exploitation reports

    Project mention: Where do you get your information regarding new vulnerabilities and security risks? | /r/sysadmin | 2023-05-09

    intothewild - https://github.com/gmatuz/inthewilddb/blob/master/rss.xml

  • gitlab-watchman

    Finding exposed secrets and personal data in GitLab

  • pyc2bytecode

    A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

  • MurMurHash

    This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

  • yaralyzer

    Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.

  • Crack-O-Matic

    Find and notify users in your Active Directory with weak passwords

  • recon365

    Gather information from an email address connected to Office 365 (by netsecurity-as)

    Project mention: Script to gather information from an email address or domain connected to AzureAD or Office 365 | /r/u_CyberGh00st | 2023-03-28
  • Somnium

    Script to test NetSec capabilities. (by asluppiter)

  • Security-Log-Generator

    Generates logs of typical formats that would often be found in a SOC.

  • enterpriseattack

    A lightweight Python module to interact with the Mitre Att&ck Enterprise dataset.

  • ti_scraper

    Highly configurable scripts for a web scraper intended to be used for cyber threat intelligence

    Project mention: Adding Proxy to existing Scraper | /r/webscraping | 2023-11-04

    because I'm not a developer, I took this project https://github.com/sandra-liedtke/ti_scraper to help me.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2024-01-02.

Python Blueteam related posts

Index

What are some of the best open-source Blueteam projects in Python? This list will help you:

Project Stars
1 theHarvester 9,952
2 DefaultCreds-cheat-sheet 5,108
3 snoop 2,587
4 PlumHound 977
5 Hunting-Queries-Detection-Rules 891
6 SlackPirate 711
7 GoodHound 434
8 LOOBins 374
9 slack-watchman 281
10 boobsnail 252
11 inthewilddb 186
12 gitlab-watchman 184
13 pyc2bytecode 121
14 MurMurHash 108
15 yaralyzer 99
16 Crack-O-Matic 98
17 recon365 79
18 Somnium 21
19 Security-Log-Generator 18
20 enterpriseattack 9
21 ti_scraper 5
Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com