purpleteam

Open-source projects categorized as purpleteam
Edit details
Language: + Python + PowerShell + XSLT
Topics: Redteam Blueteam Cybersecurity Infosec active-directory
Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured

Top 18 purpleteam Open-Source Projects

  • LOLBAS

    Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

    • Project mention: How do i replicate GTFOBins layout ? | /r/web_design | 2023-12-05

    I have an idea for a simar style website that i would like to create, and i was going to use GTFOBins as a template and ammend to fit my data, much like LOLBAS has.

  • UltimateAppLockerByPassList

    The goal of this repository is to document the most common techniques to bypass AppLocker.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • APT-Hunter

    APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

    • Project mention: APT-Hunter: APT-Hunter is Threat Hunting tool for Windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity | /r/blueteamsec | 2023-05-07

  • PlumHound

    Bloodhound for Blue and Purple Teams

    • Project mention: Dealing with large BloodHound datasets | dev.to | 2023-12-06

    Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/

  • FalconFriday

    Hunting queries and detections

    • Project mention: Collection of Queries | /r/crowdstrike | 2023-06-06

    Falcon Force Team - Falcon Friday Queries: https://github.com/FalconForceTeam/FalconFriday

  • EnterprisePurpleTeaming

    Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.

  • PWF

    Practical Windows Forensics Training

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo

  • purple-team-exercise-framework

    Purple Team Exercise Framework

  • PurpleCloud

    A little tool to play with Azure Identity - Azure Active Directory lab creation tool

  • GoodHound

    Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.

    • Project mention: Dealing with large BloodHound datasets | dev.to | 2023-12-06

    Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/

  • slack-watchman

    Slack enumeration and exposed secrets detection tool

    • Project mention: Slack Watchman - Version 4.0.0 Release | /r/netsec | 2023-05-13

  • awesome-lists

    Security lists for SOC detections (by mthcht)

    • Project mention: List of suspicious ports | /r/cybersecurity | 2023-05-22

  • gitlab-watchman

    Finding exposed secrets and personal data in GitLab

  • Atomic-Red-Team-Intelligence-C2

    ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.

  • Purpleteam

    Purpleteam scripts simulation & Detection - trigger events for SOC detections

  • MurMurHash

    This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

  • NIST-to-Tech

    An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

  • recon365

    Gather information from an email address connected to Office 365 (by netsecurity-as)

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

purpleteam related posts

  • Living Off the Land Binaries

    1 project | news.ycombinator.com | 25 Sep 2023

  • LOOBins

    1 project | news.ycombinator.com | 25 May 2023

  • APT-Hunter: APT-Hunter is Threat Hunting tool for Windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

    1 project | /r/blueteamsec | 7 May 2023

  • TIL Adversary Emulation is a subset Red Team but with focus on CTI. How it is executed in the industry in real world example?

    1 project | /r/redteamsec | 23 Mar 2023

  • ahmedkhlief/APT-Hunter: Threat Hunting tool for windows event logs

    1 project | /r/blueteamsec | 12 Feb 2023

  • Analysing attacks from a Blue team perspective

    1 project | /r/blueteamsec | 14 May 2022

  • Need help with Red Team PoC setup/demo

    1 project | /r/cybersecurity | 12 Feb 2022
  • A note from our sponsor - InfluxDB
    www.influxdata.com | 2 May 2024
    Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Index

What are some of the best open-source purpleteam projects? This list will help you:

Project Stars
1 LOLBAS 6,596
2 UltimateAppLockerByPassList 1,812
3 APT-Hunter 1,147
4 PlumHound 1,015
5 FalconFriday 653
6 EnterprisePurpleTeaming 621
7 PWF 542
8 purple-team-exercise-framework 535
9 PurpleCloud 474
10 GoodHound 438
11 slack-watchman 290
12 awesome-lists 204
13 gitlab-watchman 188
14 Atomic-Red-Team-Intelligence-C2 162
15 Purpleteam 122
16 MurMurHash 110
17 NIST-to-Tech 102
18 recon365 77

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com