purpleteam

Here are 28 public repositories matching this topic...

ahmedkhlief / APT-Hunter

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

incident-response python3 threat-hunting windows-eventlog forensic-analysis purpleteam windows-event-logs apt-attacks

Updated Nov 7, 2024
Python

PlumHound / PlumHound

Star

Bloodhound Reporting for Blue and Purple Teams

neo4j directory active-directory bloodhound activedirectory active infosec cypher-query blueteam redteam purpleteam reporting-tool bloodhoundad bloodhoundad-cypher-queries purple-teams plumhound-tasks bloodhoundad-pathfinding-engine bluehound attack-paths

Updated Oct 2, 2024
Python

iknowjason / PurpleCloud

Star

A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4

azure dfir siem pentest purpleteam azure-lab dfir-automation

Updated Nov 12, 2024
Python

idnahacks / GoodHound

Star

Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.

python neo4j active-directory bloodhound python3 cybersecurity activedirectory py2neo blueteam redteam purpleteam

Updated Jul 9, 2024
Python

PaperMtn / slack-watchman

Star

Slack enumeration and exposed secrets detection tool

slack tools monitoring cybersecurity infosec slack-api red-team blueteam blue-team redteam purpleteam purple-team slack-workspaces

Updated Oct 27, 2024
Python

Ziconius / FudgeC2

Star

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

security powershell python3 cybersecurity post-exploitation offensive-security security-tools c2 command-and-control redteam implant purpleteam readteaming

Updated May 1, 2023
Python

Viralmaniar / Remote-Desktop-Caching-

Star

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely u…

hacking forensics penetration-testing infrastructure-monitoring forensic-analysis blueteam hacking-attack-tools internal-pentest redteaming blue-team redteam hacking-tools purpleteam forensics-investigations

Updated Aug 4, 2018
Python

PaperMtn / gitlab-watchman

Star

Finding exposed secrets and personal data in GitLab

gitlab tools monitoring cybersecurity gitlab-api infosec red-team dlp blueteam blue-team data-loss-prevention redteam purpleteam purple-team gitlab-watchman

Updated Nov 11, 2024
Python

darmado / Atomic-Red-Team-C2

Star

ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.

csharp dotnet python3 post-exploitation powershell-scripts offensive-security redteam mitre-attack red-teams purpleteam purple-team

Updated Sep 4, 2024
Python

Viralmaniar / MurMurHash

Star

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

phishing murmurhash3 cybersecurity infosec threatintel murmurhash blueteam security-tools threat-intelligence redteaming redteam purpleteam threatintelligence phishing-detection blueteaming threathunting proactive-security

Updated Aug 30, 2023
Python

netsecurity-as / recon365

Star

Gather information from an email address connected to Office 365

osint active-directory cybersecurity recon blueteam redteam purpleteam o365-security

Updated Apr 24, 2023
Python

PaperMtn / github-watchman

Star

Monitoring GitHub for sensitive data shared publicly

github github-api tools monitoring cybersecurity infosec red-team dlp blueteam blue-team data-loss-prevention redteam purpleteam purple-team

Updated Dec 20, 2021
Python

mvelazc0 / PurpleSpray

Star

PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpose of generating attack telemetry in properly monitored Windows enterprise environments

purpleteam password-spray adversary-simulation

Updated Aug 15, 2019
Python

blackbotsecurity / AWS-Attack

Star

AWSATT&CK adds MITRE ATT&CK context and additional logging capabilities to Rhino Security Labs's open-source AWS exploitation framework, Pacu.

post-exploitation aws-security cloud-security penetration-testing-framework redteam mitre-attack purpleteam penetration-testing-tools

Updated Mar 5, 2021
Python

jstnk9 / TIBER-Cases

Star

TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to TIBER-EU processes.

misp thehive blueteam redteam purpleteam thehive-project tiber-eu

Updated Jul 13, 2022
Python

PaperMtn / slack-watchman-enterprise-grid

Star

Monitoring your Slack Enterprise Grid for sensitive information

slack security tools monitoring cybersecurity infosec slack-api red-team dlp blueteam blue-team redteam purpleteam purple-team slack-enterprise-grid

Updated Apr 15, 2023
Python

AutomoxSecurity / iShelly

Star

A tool to generate macOS initial access vectors using Prelude Operator payloads

macos operator prelude adversary-emulation purpleteam adversary-simulation initial-access

Updated May 25, 2022
Python

Add3r / UserAgent-Fuzz-lib

Star

User-agent Fuzzing Library. This repository holds data of all the user agents in the `user_agents.json` file, which can be used directly with any tool that can parse json format.