Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 21 Python Blueteam Projects
-
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
Hunting-Queries-Detection-Rules
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
-
SlackPirate
Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace
-
GoodHound
Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
LOOBins
Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" macOS binaries and how they can be used by threat actors for malicious purposes.
-
boobsnail
BoobSnail allows generating Excel 4.0 XLM macro. Its purpose is to support the RedTeam and BlueTeam in XLM macro generation.
-
pyc2bytecode
A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)
-
MurMurHash
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
-
yaralyzer
Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.
-
ti_scraper
Highly configurable scripts for a web scraper intended to be used for cyber threat intelligence
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Project mention: Search for sensitive data using theHarvester and h8mail tools | dev.to | 2023-12-01
Project mention: Osint update of the Snoop Project tool search for user by nickname | news.ycombinator.com | 2024-01-02
Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/
Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/
I’m excited to announce the release of Living Off the Orchard: macOS Binaries (LOOBins)!
LOOBins is a resource designed to help cybersecurity professionals and researchers understand and defend against the potential risks associated with binaries built into macOS.
https://loobins.io
Project mention: Where do you get your information regarding new vulnerabilities and security risks? | /r/sysadmin | 2023-05-09intothewild - https://github.com/gmatuz/inthewilddb/blob/master/rss.xml
because I'm not a developer, I took this project https://github.com/sandra-liedtke/ti_scraper to help me.
Python Blueteam related posts
- LOOBins
- Script to gather information from an email address or domain connected to AzureAD or Office 365
- recon365 - Gather information from an email address connected to AzureAD or Office 365
- ZeusCloud - Open-source Cloud Security built on Neo4j
- ZeusCloud: An open source cloud security platform
- recon365 - Gather information from an email address connected to Office 365
- I want to write a program that sends a single query to 5 different search engines, and returns a list of the headers of the first 1000 results
-
A note from our sponsor - InfluxDB
www.influxdata.com | 25 Apr 2024
Index
What are some of the best open-source Blueteam projects in Python? This list will help you:
Project | Stars | |
---|---|---|
1 | theHarvester | 10,319 |
2 | DefaultCreds-cheat-sheet | 5,269 |
3 | snoop | 2,683 |
4 | PlumHound | 1,014 |
5 | Hunting-Queries-Detection-Rules | 997 |
6 | SlackPirate | 711 |
7 | GoodHound | 438 |
8 | LOOBins | 386 |
9 | slack-watchman | 289 |
10 | boobsnail | 252 |
11 | gitlab-watchman | 188 |
12 | inthewilddb | 187 |
13 | pyc2bytecode | 127 |
14 | MurMurHash | 110 |
15 | Crack-O-Matic | 100 |
16 | yaralyzer | 100 |
17 | recon365 | 77 |
18 | Security-Log-Generator | 23 |
19 | Somnium | 21 |
20 | enterpriseattack | 9 |
21 | ti_scraper | 5 |
Sponsored