SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 Blueteam Open-Source Projects
-
Project mention: Search for sensitive data using theHarvester and h8mail tools | dev.to | 2023-12-01
-
I have an idea for a simar style website that i would like to create, and i was going to use GTFOBins as a template and ammend to fit my data, much like LOLBAS has.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
-
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
-
awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
-
kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
-
Project mention: Osint update of the Snoop Project tool search for user by nickname | news.ycombinator.com | 2024-01-02
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
Project mention: Agent event queue is flooded. Check the agent configuration | /r/Wazuh | 2023-06-30
-
the_cyber_plumbers_handbook
Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.
-
rita
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
-
-
UltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.
-
Adalanche
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
-
Also Hardening-Kitty. https://github.com/scipag/HardeningKitty
-
Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/
-
Hunting-Queries-Detection-Rules
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
-
MicrosoftWontFixList
A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))
-
-
SlackPirate
Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace
-
It’s part of an open source cloud security platform we’re maintaining. Inspired by discussions with folks in the cloud sec community sharing challenges around assessing blast radius, potential lateral movements, and IAM context around alerts they receive.
-
Falcon Force Team - Falcon Friday Queries: https://github.com/FalconForceTeam/FalconFriday
-
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Blueteam related posts
- Active Directory ACL Visualizer and Explorer
- Living Off the Land Binaries
- Agent event queue is flooded. Check the agent configuration
- Collection of Queries
- LOOBins
- Open-source IAM Access Visualizer
- Open source IAM Access Visualizer
-
A note from our sponsor - SaaSHub
www.saashub.com | 18 Apr 2024
Index
What are some of the best open-source Blueteam projects? This list will help you:
Project | Stars | |
---|---|---|
1 | theHarvester | 10,287 |
2 | LOLBAS | 6,562 |
3 | Infosec_Reference | 5,354 |
4 | DefaultCreds-cheat-sheet | 5,256 |
5 | awesome-security-hardening | 4,922 |
6 | kubernetes-goat | 3,857 |
7 | snoop | 2,670 |
8 | chainsaw | 2,527 |
9 | the_cyber_plumbers_handbook | 2,464 |
10 | rita | 2,460 |
11 | windows_hardening | 2,149 |
12 | UltimateAppLockerByPassList | 1,807 |
13 | Adalanche | 1,517 |
14 | HardeningKitty | 1,133 |
15 | PlumHound | 1,013 |
16 | Hunting-Queries-Detection-Rules | 993 |
17 | MicrosoftWontFixList | 924 |
18 | RustHound | 858 |
19 | SlackPirate | 711 |
20 | ZeusCloud | 666 |
21 | FalconFriday | 651 |
22 | PWF | 541 |
23 | purple-team-exercise-framework | 530 |