GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → iknowjason → BlueCloud

iknowjason / BlueCloud

Licence: MIT license
Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.

Programming Languages

HTML
75241 projects
HCL
1544 projects
powershell
5483 projects
javascript
184084 projects - #8 most used programming language
python
139335 projects - #7 most used programming language
Smarty
1635 projects
shell
77523 projects

Labels

dfirpentestingblue-teampurpleteamcyber-rangecyberrangedfir-automationedr-testing

Projects that are alternatives of or similar to BlueCloud

Detectionlab
Automate the creation of a lab environment complete with security tooling and logging best practices
Stars: ✭ 3,237 (+3578.41%)
Mutual labels:  dfir, dfir-automation
hashlookup-forensic-analyser
Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https://circl.lu/services/hashlookup/
Stars: ✭ 43 (-51.14%)
Mutual labels:  dfir, dfir-automation
github-watchman
Monitoring GitHub for sensitive data shared publicly
Stars: ✭ 60 (-31.82%)
Mutual labels:  blue-team, purpleteam
Lolbas
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Stars: ✭ 3,810 (+4229.55%)
Mutual labels:  dfir, purpleteam
ad-privileged-audit
Provides various Windows Server Active Directory (AD) security-focused reports.
Stars: ✭ 42 (-52.27%)
Mutual labels:  dfir, purpleteam
Lolbas
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Stars: ✭ 1,506 (+1611.36%)
Mutual labels:  dfir, purpleteam
Cortex Analyzers
Cortex Analyzers Repository
Stars: ✭ 246 (+179.55%)
Mutual labels:  dfir
Blue-Baron
Automate creating resilient, disposable, secure and agile monitoring infrastructure for Blue Teams.
Stars: ✭ 23 (-73.86%)
Mutual labels:  blue-team
Vast
🔮 Visibility Across Space and Time
Stars: ✭ 227 (+157.95%)
Mutual labels:  dfir
Atc React
A knowledge base of actionable Incident Response techniques
Stars: ✭ 226 (+156.82%)
Mutual labels:  dfir
awesome-cybersecurity-blueteam-cn
网络安全 · 攻防对抗 · 蓝队清单,中文版
Stars: ✭ 494 (+461.36%)
Mutual labels:  blue-team
cytrone
CyTrONE: Integrated Cybersecurity Training Framework
Stars: ✭ 72 (-18.18%)
Mutual labels:  cyber-range
Packrat
Live system forensic collector
Stars: ✭ 16 (-81.82%)
Mutual labels:  dfir
TheHiveHooks
This is a python tool aiming to make using TheHive webhooks easier.
Stars: ✭ 22 (-75%)
Mutual labels:  dfir
Dfirtrack
DFIRTrack - The Incident Response Tracking Application
Stars: ✭ 232 (+163.64%)
Mutual labels:  dfir
Threathunter Playbook
A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
Stars: ✭ 2,879 (+3171.59%)
Mutual labels:  dfir
EventTranscript.db-Research
A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.
Stars: ✭ 33 (-62.5%)
Mutual labels:  dfir
ezEmu
See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
Stars: ✭ 89 (+1.14%)
Mutual labels:  purpleteam
CCXDigger
The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
Stars: ✭ 45 (-48.86%)
Mutual labels:  dfir
assisted-log-enabler-for-aws
Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.
Stars: ✭ 167 (+89.77%)
Mutual labels:  blue-team
View All Similar Projects ➔

Overview

Cyber Range deployment of HELK and Velociraptor! Automated terraform deployment of one system running HELK + Velociraptor server with one registered Windows endpoint in Azure or AWS. A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small HELK + Velociraptor R&D lab.

Use Cases

  • EDR Testing lab
  • Penetration Testing lab
  • SIEM / Threat Hunting / DFIR / Live Response lab with HELK + Velociraptor [1, 2]
  • Data Science research with HELK server, Jupyter notebooks
  • Detection Engineering research with Mordor [3, 4]

Documentation

Please see the full documentation for details and getting started with installation.

Full Documentation Site

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].