blue-team

A FREE Windows C development course where we will learn the Win32API and reverse engineer each step utilizing IDA Free in both an x86 and x64 environment.

training windows hack cplusplus cpp assembly reverse-engineering assembler hacking cybersecurity ida ida-pro cyber training-materials win32api idapro training-material blue-team microsoft-windows cyber-threat-intelligence

UpdatedFeb 7, 2026
C

Viralmaniar /BigBountyRecon

Star1.5k

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

osint cybersecurity pentesting recon bugbounty offensive-security red-team reconnaissance pentest-tool blue-team red-teaming purple-team bugbountytips bugbounty-tool purple-teams

UpdatedJan 29, 2021
C#

Qianlitp /WatchAD

Star1.3k

AD Security Intrusion Detection System

security active-directory python3 ntlm kerberos event-log intrusion-detection-system blue-team defcon27 watchad

UpdatedMar 31, 2023
Python

ION28 /BLUESPAWN

Sponsor

Star1.3k

An Active Defense and EDR software to empower Blue Teams

windows security anti-virus threat-hunting security-tools blue-team edr mitre-attack active-defense

UpdatedAug 10, 2023
C++

edoardogerosa /sentinel-attack

Star1.1k

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

azure detection logging cybersecurity sysmon threat-hunting siem security-tools blue-team mitre-attack workbooks sysmon-config terraform-azure kql azure-sentinel

UpdatedNov 28, 2024

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event s…

security automation hacking infosec pentesting pentest hacking-tool red-team security-tools pentest-tool blue-team hacking-tools red-teams blue-teams pentest-tools

UpdatedMay 27, 2020
Python

satan1a /awesome-cybersecurity-blueteam-cn

Star934

网络安全 · 攻防对抗 · 蓝队清单，中文版

awesome cybersecurity chinese-translation attack-defense blue-team

UpdatedDec 3, 2023
HTML

atenreiro /opensquat

Star934

The openSquat is an open-source tool for detecting domain look-alikes by searching for newly registered domains that might be impersonating legit domains and brands.

python osint scanner malware phishing cybersecurity infosec threat-hunting domain-name typosquatting security-tools threat-intelligence homograph-attack blue-team phishing-domains phishing-detection cybersquatting domain-squatting

UpdatedJan 8, 2026
Python

Puliczek /awesome-list-of-secrets-in-environment-variables

Star900

🦄🔒 Awesome list of secrets in environment variables 🖥️

security exploit log4j cybersecurity poc pentesting writeups bugbounty red-team blue-team security-writeups cve-2021-44228 bugbounttips

UpdatedSep 21, 2022

dolevf /graphql-cop

Star598

Security Auditor Utility for GraphQL APIs

graphql security auditing hacking penetration-testing hardening red-team blue-team

UpdatedNov 20, 2025
Python

yogsec /Hacking-Tools

Star511

A curated list of penetration testing and ethical hacking tools, organized by category. This compilation includes tools from Kali Linux and other notable sources.

exploit hackers reverse-engineering hacking forensics cybersecurity penetration-testing vulnerability web-security bugbounty kali-linux linux-tools red-team blue-team hacking-tools penetration-testing-tools ethical-hacking-tools bugbountytips bug-bounty-tools

UpdatedJan 25, 2026

activecm /rita

Star509

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

log-analysis incident-response intrusion-detection network-monitoring threat-hunting beacons cyber-security zeek security-tools threat-intelligence c2 anomaly-detection command-and-control blue-team network-traffic-analysis c2-detection

UpdatedFeb 6, 2026
Go

0xflux /Sanctum

Star496

Sanctum is an experimental proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antivirus. Built in Rust.

rust driver kernel-driver antivirus malware-analysis malware-research cyber-security red-team windows-driver blue-team edr tauri rust-driver rust-windows windows-rust endpoint-detection-response tauri-app antivirus-software rust-edr rust-windows-driver

UpdatedFeb 5, 2026
Rust

Improve this page

Add a description, image, and links to theblue-team topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with theblue-team topic, visit your repo's landing page and select "manage topics."

Learn more

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

blue-team

Here are 661 public repositories matching this topic...

decalage2 /awesome-security-hardening

Trusted-AI /adversarial-robustness-toolbox

fabacab /awesome-cybersecurity-blueteam

A-poc /BlueTeam-Tools

cisagov /RedEye

Astrosp /Awesome-OSINT-For-Everything

Bashfuscator /Bashfuscator

mytechnotalent /Hacking-Windows