A set of blue team scripts for hardening Linux systems focusing on competitions and locking a system down.
-
Updated
May 23, 2024 - Shell
A set of blue team scripts for hardening Linux systems focusing on competitions and locking a system down.
Convert Microsoft's driver blocklist to a EDR detection hash list for unsupported operating systems (eg. Win 7,8)
hardening your first protection
A PowerShell script for rapid initial incident response data collection on a potentially breached Windows system.
Basic rapid linux IR bash script
Triage scripts for Intel-based Macs
IOC validation with Python
HuntLG. Herramienta de Threat Hunting.
MSI Threat Intelligence & Blue Team Tool.
PyCanary: CMD line tool to monitor any directory for file access or file changes, log event, send basic alert to user, and dump and process information collected. There is also a background thread monitoring all created processes and logging them for later analysis.
JackOSINT
Hardsys
Windows Defender contains several functions for tools to secure Windows machine and get compliant with common regulations.
Blue Team resources and tools
TORVI
Karasnet es una herramienta de un ciclo de ataque cibernético.
loSIEM
Security Blue Team - path progress
A script that webs scrapes multiple webpages for known vulnerable Windows Drivers, SHA256 hashes all system drivers, looks for matching driver names and SHA256 hashes.
Go script that finds a matching hash or a diff of a target hash in a directory.
Add a description, image, and links to the blueteam-tools topic page so that developers can more easily learn about it.
To associate your repository with the blueteam-tools topic, visit your repo's landing page and select "manage topics."