BlueTeam-Tools
✅ Network Discovery and Mapping:-
1- Nmap Network scanner.
2- Nuclei Vulnerability scanner.
3- Masscan Fast network scanner.
4- Angry IP Scanner IP/port scanner.
5- ZMap Large network scanner.
6- Shodan Internet facing asset search engine.
✅ Vulnerability Management:-
1- OpenVAS Open-source vulnerability scanner.
2- Nessus Essentials Vulnerability scanner.
3- Nexpose Vulnerability management tool.
✅ Security Monitoring:-
1- Sysmon System Monitor for Windows
2- Kibana Data visualization and exploration
3- Logstash Data collection and processing.
✅ Threat Tools and Techniques:-
1- lolbas-project.github.io Living Off The Land Windows Binaries.
2- gtfobins.github.io Living Off The Land Linux Binaries.
3- filesec.io Attacker file extensions.
4- KQL Search KQL query aggregator.
5- Unprotect Project Malware evasion techniques knowledge base.
✅ Threat Intelligence:-
1- Maltego Threat Intelligence Platform.
2- MISP Malware Information Sharing. Platform.
3- ThreatConnect Threat data aggregation
✅ Incident Response Planning:-
1- NIST Cybersecurity Framework
2- Incident Response Plan Framework for incident response
3- Ransomware Response Plan Framework for ransomware response
✅ Malware Detection and Analysis:-
1- VirusTotal Malicious IOC Sharing Platform.
2- IDA Malware disassembler and debugger.
3- Ghidra Malware reverse engineering tool.
✅ Data Recovery:-
1- Recuva File recovery.
2- Extundelete Ext3 or ext4 partition recovery.
3- TestDisk Data Recovery.
✅ Digital Forensics:-
1- SANS SIFT Forensic toolkit.
2- The Sleuth Kit Disk images analysis tools.
3- Autopsy Digital forensics platform
✅ Security Awareness Training:-
1- TryHackMe Cyber security challenges platform.
3- HackTheBox Cyber security challenges platform.
4- PhishMe Phishing training
*Beware click the link!