Tools and Techniques for Blue Team / Incident Response
You didn't think I'd go and leave the blue team out, right?
蓝队分析研判工具箱,功能包括内存马反编译分析、各种代码格式化、网空资产测绘功能、溯源辅助、解密冰蝎流量、解密哥斯拉流量、解密Shiro/CAS/Log4j2的攻击payload、IP/端口连接分析、各种编码/解码功能、蓝队分析常用网址、java反序列化数据包分析、Java类名搜索、Fofa搜索、Hunter搜索等。
Bloodhound Reporting for Blue and Purple Teams
翻译 - 蓝色和紫色团队的猎犬
RedEye is a visual analytic tool supporting Red & Blue Team operations
Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries
Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams
翻译 - 对抗性鲁棒性工具箱(ART)-用于机器学习安全性的Python库-规避,中毒,提取,推理
Blue Team Cheat Sheats
#大语言模型#Blue team analyisis box is a tool for blue team security analyisis.
AWS Elastic Beanstalk blue-green deployment automation from ThoughtWorks Mingle Team
dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!
Blue Team detection lab created with Terraform and Ansible in Azure.
A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.
翻译 - 完全可配置和可扩展的Bash模糊框架。该工具旨在帮助红队和蓝队。
Powershell scripts for automating common system administration, blue team, and digital forensics tasks
Some portable tools, some YARA, some Python, and a little bit of love. Not all of these tools can be used in incident response. Use PEs with caution.
#搜索#有用的黑客搜索引擎合集,可用于渗透测试、漏洞评估、红队操作
红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool
Blue Hydra
一些个人学习的蓝队以及取证笔记
A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-Team defense under an active threat.