Cybersecurity Blue Team

The "Awesome Cybersecurity Blue Team" project is a curated collection of resources dedicated to the practices and tools used by blue teams in cybersecurity. Blue teams are responsible for defending an organization’s information systems against cyber threats, identifying vulnerabilities, and implementing security measures. This list includes various categories such as incident response tools, threat intelligence platforms, security frameworks, training materials, and community resources. It serves as a valuable asset for cybersecurity professionals, from beginners to experienced practitioners, looking to enhance their defensive strategies and skills. Users can explore this collection to strengthen their understanding of cybersecurity defense mechanisms and improve their organization's security posture.

cybersecurityblue-teamincident-responsethreat-intelligencesecurity-toolsvulnerability-assessmentdefensive-strategies

RSS View on GitHub

5.2k stars779 forks0 contributorsUpdated

27 sections · 47 projects

Automation and Convention

2 projects

Dshell

An extensible Python framework for network forensic analysis through plugin-based dissection of packet captures.

#network-forensics#traffic-inspection#protocol-analysis

Stars5,486

Forks1,138

Last commit1 year ago

Password Manager Resources

A collaborative collection of data and code quirks to improve password manager compatibility with websites.

#credential-management#two-factor-authentication#browser-integration

Stars4,684

Forks586

Last commit1 day ago

Code libraries and bindings

0 projects

Orchestration, Automation, and Response (SOAR)

0 projects

Cloud platform security

4 projects

Principal Mapper (PMapper)

A tool for quickly evaluating IAM permissions and identifying security risks in AWS accounts through graph-based analysis.

#python-tool#botocore#cloudsecurity

Stars1,550

Forks197

Last commit1 year ago

Prowler

An open-source cloud security platform that automates security and compliance assessments across AWS, Azure, GCP, and other cloud providers.

#aws-security#infrastructure-security#multi-cloud

Stars13,652

Forks2,108

Last commit2 days ago

Scout Suite

An open-source multi-cloud security auditing tool that assesses cloud environment security posture via provider APIs.

#compliance-auditing#infrastructure-security#multi-cloud

Stars7,632

Forks1,196

Last commit7 months ago

gvisor

An application kernel for containers that provides strong isolation by implementing a Linux-like interface in memory-safe Go.

#container-security#sandbox#oci

Stars18,148

Forks1,578

Last commit1 day ago

Distributed monitoring

0 projects

Kubernetes

1 projects

Sealed Secrets

A Kubernetes controller and tool for encrypting Secrets into SealedSecrets that can be safely stored in Git.

#devops#controller#kubernetes-secrets

Stars9,050

Forks768

Last commit2 days ago

Meshes

0 projects

Communications security (COMSEC)

0 projects

DevSecOps

4 projects

blackbox

A simple wrapper for GPG to encrypt secrets in version control systems like Git, Mercurial, and Subversion.

#mercurial#version-control#devops

Stars6,769

Forks385

Last commit5 months ago

clair

Static vulnerability analysis for container images (OCI/Docker) via an API that indexes and matches against known security flaws.

#container-security#vulnerabilities#oci

A comprehensive security scanner that finds vulnerabilities, misconfigurations, secrets, and SBOMs in containers, Kubernetes, code, and clouds.

#sbom#container-security#vulnerability

Stars34,670

Forks307

Last commit4 days ago

helm-secrets

A Helm plugin that manages secrets using Git workflows and integrates with cloud secret managers.

#helm-plugins#helm-chart#helm

Stars1,986

Forks154

Last commit7 days ago

Application or Binary Hardening

0 projects

Compliance testing and reporting

0 projects

Dependency confusion

0 projects

Fuzzing

1 projects

OneFuzz

A self-hosted Fuzzing-As-A-Service platform for continuous developer-driven fuzzing to harden software prior to release.

#software-hardening#fuzzing#ci-cd-integration

Stars2,825

Forks201

Last commit2 years ago

Policy enforcement

0 projects

Supply chain security

1 projects

Notary

A client and server implementation of The Update Framework (TUF) for securing software distribution and updates.

#tuf-implementation#software-updates#cncf

Stars3,289

Forks521

Last commit1 year ago

Honeypots

1 projects

CanaryTokens

Deploy honeytokens across your network to detect unauthorized access and data exfiltration attempts.

#honeytoken#smtp#security

Stars2,055

Forks287

Last commit2 days ago

Tarpits

1 projects

Endlessh

An SSH tarpit that slowly sends an endless banner to trap and waste attackers' time.

#honeypot#server-hardening#c-program

Stars8,441

Forks306

Last commit1 year ago

Related Awesome Lists

📦

Hacking

The "Awesome Hacking" project is a curated resource list designed for those interested in the field of hacking, which involves exploring and exploiting vulnerabilities in computer systems and networks. This list encompasses a wide range of categories, including penetration testing tools, ethical hacking tutorials, security research papers, and community forums. It serves as a valuable resource for beginners looking to learn the basics of cybersecurity, as well as experienced professionals seeking advanced techniques and tools. Whether you are aiming to enhance your skills or stay updated on the latest security trends, this collection offers a wealth of information to support your hacking journey.

16.1k

📦

Security

The "Awesome Security" project is a curated collection of resources focused on enhancing security practices in the digital realm. This list encompasses a wide range of categories including security tools, libraries, frameworks, tutorials, and best practices for various platforms and technologies. It is designed to benefit security professionals, developers, and system administrators alike, providing valuable insights and tools to safeguard applications and data. Whether you are a beginner looking to understand security fundamentals or an experienced practitioner seeking advanced techniques, this project offers a wealth of information to help you improve your security posture and protect your digital assets.

14.2k

📦

Malware Analysis

The "Awesome Malware Analysis" project is a curated resource list designed to assist security professionals and researchers in the field of malware analysis. Malware analysis involves examining malicious software to understand its behavior, functionality, and impact. This list includes tools for static and dynamic analysis, reverse engineering resources, malware databases, and educational materials such as tutorials and courses. It is valuable for both beginners looking to learn the basics and experienced analysts seeking advanced techniques and tools. Users can find a wealth of resources to enhance their skills and improve their malware analysis capabilities.

13.6k

📦

Web Security

The "Awesome Web Security" project is a curated collection of resources focused on the security of web applications and services. Web security encompasses practices and technologies designed to protect websites and online services from cyber threats, vulnerabilities, and attacks. This list includes tools for penetration testing, secure coding practices, frameworks, libraries, and educational materials such as articles and tutorials. It is valuable for developers, security professionals, and researchers who seek to enhance their understanding of web security and implement robust security measures. Users can find essential tools and knowledge to safeguard their web applications effectively and stay ahead of potential threats.

13.2k

Community-curated · Updated weekly · 100% open source

Found a gem we're missing?

Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.

Submit a project Star on GitHub