Top 21 Python Blueteam Projects

• theHarvester

  19 10,319 9.4 Python

  E-mails, subdomains and names Harvester - OSINT

Project mention: Search for sensitive data using theHarvester and h8mail tools | dev.to | 2023-12-01

• DefaultCreds-cheat-sheet

  2 5,269 7.4 Python

  One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• snoop

  7 2,683 9.4 Python

  Snoop — инструмент разведки на основе открытых данных (OSINT world)

Project mention: Osint update of the Snoop Project tool search for user by nickname | news.ycombinator.com | 2024-01-02

• PlumHound

  1 1,014 8.7 Python

  Bloodhound for Blue and Purple Teams

  

Project mention: Dealing with large BloodHound datasets | dev.to | 2023-12-06

Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/

• Hunting-Queries-Detection-Rules

  7 997 9.3 Python

  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Project mention: Advanced Hunting queries every admin should use | /r/DefenderATP | 2023-05-29

• SlackPirate

  1 711 0.0 Python

  Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace

• GoodHound

  2 438 0.0 Python

  Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.

Project mention: Dealing with large BloodHound datasets | dev.to | 2023-12-06

Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• LOOBins

  2 386 8.7 Python

  Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" macOS binaries and how they can be used by threat actors for malicious purposes.

Project mention: LOOBins | news.ycombinator.com | 2023-05-25

I’m excited to announce the release of Living Off the Orchard: macOS Binaries (LOOBins)!

LOOBins is a resource designed to help cybersecurity professionals and researchers understand and defend against the potential risks associated with binaries built into macOS.

https://loobins.io

• slack-watchman

  1 289 6.2 Python

  Slack enumeration and exposed secrets detection tool

Project mention: Slack Watchman - Version 4.0.0 Release | /r/netsec | 2023-05-13

• boobsnail

  1 252 3.9 Python

  BoobSnail allows generating Excel 4.0 XLM macro. Its purpose is to support the RedTeam and BlueTeam in XLM macro generation.

  

• gitlab-watchman

  1 188 3.1 Python

  Finding exposed secrets and personal data in GitLab

• inthewilddb

  7 187 3.3 Python

  Hourly updated database of exploit and exploitation reports

Project mention: Where do you get your information regarding new vulnerabilities and security risks? | /r/sysadmin | 2023-05-09

intothewild - https://github.com/gmatuz/inthewilddb/blob/master/rss.xml

• pyc2bytecode

  1 127 0.0 Python

  A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

• MurMurHash

  1 110 0.0 Python

  This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

• Crack-O-Matic

  2 100 0.0 Python

  Find and notify users in your Active Directory with weak passwords

• yaralyzer

  4 100 5.1 Python

  Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.

• recon365

  3 77 3.8 Python

  Gather information from an email address connected to Office 365 (by netsecurity-as)

  

• Security-Log-Generator

  2 23 3.8 Python

  Generates logs of typical formats that would often be found in a SOC.

• Somnium

  1 21 3.5 Python

  Script to test NetSec capabilities. (by asluppiter)

• enterpriseattack

  1 9 2.7 Python

  A lightweight Python module to interact with the Mitre Att&ck Enterprise dataset.

• ti_scraper

  1 5 7.1 Python

  Highly configurable scripts for a web scraper intended to be used for cyber threat intelligence

Project mention: Adding Proxy to existing Scraper | /r/webscraping | 2023-11-04

because I'm not a developer, I took this project https://github.com/sandra-liedtke/ti_scraper to help me.

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Python Blueteam related posts

• LOOBins
  1 project | news.ycombinator.com | 25 May 2023
• Script to gather information from an email address or domain connected to AzureAD or Office 365
  1 project | /r/u_CyberGh00st | 28 Mar 2023
• recon365 - Gather information from an email address connected to AzureAD or Office 365
  1 project | /r/commandline | 23 Mar 2023
• ZeusCloud - Open-source Cloud Security built on Neo4j
  2 projects | /r/Neo4j | 20 Mar 2023
• ZeusCloud: An open source cloud security platform
  2 projects | /r/opensource | 10 Mar 2023
• recon365 - Gather information from an email address connected to Office 365
  2 projects | /r/OSINT | 28 Feb 2023
• I want to write a program that sends a single query to 5 different search engines, and returns a list of the headers of the first 1000 results
  1 project | /r/learnpython | 16 Aug 2022
• A note from our sponsor - InfluxDB
  www.influxdata.com | 25 Apr 2024

  Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Python projects with our weekly report!