This will be the repo for the BTHb. Contribute to DonMVB/BlueTeam-Handbook development by creating an account on GitHub.

Self-managed SOC Tier 1 lab using Elastic Stack, Fleet Server, Windows/Sysmon, Linux SSH logs, Apache/WAF logs, detection rules, alerts, and dashboards. - Kuyenda18/SOC-Tier1-ELK-Fleet-Lab

Find old IAM policy versions hiding extra permissions. - wakeful/d2O

Cybersecurity portfolio focused on security audits and digital forensics (DFIR). Includes Windows log analysis, incident response, root cause analysis and real-world investigations. - rofesroger/au...

Contribute to Miguel-R13/BlueTeam-Lab-Analisis-de-Malware-Spear-Phishing-VBA-Downloader development by creating an account on GitHub.

Blue Team writeups de mes challenges CyberDefenders, BTLO ou HackTheBox Sherlocks. - heraclescap/blueteam-writeups

Contribute to zy538324/BlueTeam development by creating an account on GitHub.

Practical Incident Response, Threat Intelligence, and Security Operations labs from Blue Team Labs Online - Ashim-sudo/BlueTeam-Labs

TraceGuard uses the eBPF subsystem of the linux kernel to get valuable insights to what your system is doing - L1ghtn1ng/traceguard

Practical Blue Team investigations, incident response labs, and cybersecurity projects - VikkyOdessa/BlueTeam-Portfolio

NexusIntel is a modular cyber investigation and intelligence platform designed for OSINT analysts, SOC teams, red teams, and infrastructure investigators. It correlates domains, IPs, ASNs, certific...

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on...

Practical DFIR and incident response playbooks covering phishing, malware, ransomware, insider threats, and cloud security incidents for SOC and IR teams. - regantemudo/dfir-playbooks

BlueTeam Linux v2.0 - Comprehensive defensive security platform with 23 modules - masterfrequency/blueteam-linux-app

Powershell framework for interweaving Powershell and Python API automations for blueteams - hisurfadvisory/MACROSS

A collection of hands-on Cybersecurity labs and SOC analysis reports, covering Network Security, Malware Analysis, and Incident Response. - 11March06/TryHackMe_BlueTeam_SOC

A cybersecurity platform that simulates adversary behavior and demonstrates how systems detect, contain, and explain threats across distributed environments. - mpalmer79/AegisRange

Contribute to AntoniosStamatopoulos/HTB_sherlocks_BlueTeamWriteups development by creating an account on GitHub.

Windows Event Log investigation for threat detection | Sysmon analysis, log correlation, and security event monitoring - Matt-Solo/Windows-Event-Viewer-Log-Analysis

BLUE TEAM. SentinelOps. Lightweight defensive security platform that ingests system and network logs to detect suspicious activity in real time. It applies rule-based analysis to identify brute-for...