#夺旗赛 (CTF) 和网络安全资源# E-mails, subdomains and names Harvester - OSINT
翻译 - 电子邮件,子域和名称Harvester-OSINT
#速查表 cheatsheets# One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
翻译 - 所有默认凭据的一个地方,可以帮助蓝色/红色团队成员活动查找具有默认密码password️的设备
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Snoop — инструмент разведки на основе открытых данных (OSINT world)
翻译 - Snoop-开源情报工具
Tools and Techniques for Blue Team / Incident Response
Investigate malicious Windows logon by visualizing and analyzing Windows event log
翻译 - 通过可视化和分析Windows事件日志来调查恶意Windows登录
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
翻译 - 真实情报威胁分析
You didn't think I'd go and leave the blue team out, right?
Free copy of The Cyber Plumber's Handbook
翻译 - 网络管道工手册的免费副本
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
翻译 - WADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
Bloodhound Reporting for Blue and Purple Teams
翻译 - 蓝色和紫色团队的猎犬
Active Directory data collector for BloodHound written in Rust. 🦀
A tool that shows detailed information about named pipes in Windows
#Awesome# Awesome list of keywords and artifacts for Threat Hunting sessions
Web Application Secure Coding Handbook resource.
翻译 - Web 应用程序安全编码手册资源。