all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

What are some of the most frequently used (or favorite) tools in your toolbox?

Add to bookmarks
Jan. 31, 2023, 11:25 p.m. | /u/Robbbbbbbbb

For [Blue|Purple] Teams in Cyber Defence www.reddit.com

We're a month into 2023 and I'm finding myself re-evaluating what tools me and my team use on the job. Just wondering what everyone is still using on a regular basis for internal work, or as an MSSP for clients.

Some of my random picks:

* [Nessus](https://www.tenable.com/products/nessus) \- Vulnerability scanning
* Alternatively, [OpenVAS](https://www.openvas.org/)
* [Zeek](https://zeek.org/)/[RITA](https://www.blackhillsinfosec.com/projects/rita/) \- C2 beacon detection
* [Loki](https://github.com/Neo23x0/Loki) \- YARA/IOC scanner
* [Bloodhound](https://github.com/BloodHoundAD/BloodHound) \- AD attack path management/enumeration
* [Volatility](https://www.volatilityfoundation.org/) \- Memory forensics
* [DeepBlueCLI](https://github.com/sans-blue-team/DeepBlueCLI) \- Event …

blueteamsec clients internal job mssp random team tools work

Visit resource

More from www.reddit.com / For [Blue|Purple] Teams in Cyber Defence

CVE-2024-21111 - Local Privilege Escalation in Oracle VirtualBox 8 hours ago | www.reddit.com
blueteamsec cve cve-2024 escalation +7
How I hacked into Google’s internal corporate assets [tl;dr: dependency confusion] 12 hours ago | www.reddit.com
assets blueteamsec corporate dependency +4
here's my blog on Phishing Email Investigation: A Step-by-Step Analysis 16 hours ago | www.reddit.com
analysis blog blueteamsec email +2
(The) Postman Carries Lots of Secrets - "We estimate over 4,000 live credentials are currently … 20 hours ago | www.reddit.com
blueteamsec cloud credentials live +4
Hunting for a Sliver in a haystack 1 day, 8 hours ago | www.reddit.com
blueteamsec haystack hunting sliver
Nation-State Threat Actors Renew Publications to npm 1 day, 13 hours ago | www.reddit.com
blueteamsec nation npm publications +3
Guidance for Incident Responders 1 day, 16 hours ago | www.reddit.com
blueteamsec guidance incident incident responders
JA4T: TCP Fingerprinting - And How to Use It to Block Over 60% of Internet … 2 days, 5 hours ago | www.reddit.com
block blueteamsec fingerprinting internet +3
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices 2 days, 7 hours ago | www.reddit.com
arcanedoor blueteamsec campaign devices +6

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Engineer 2

@ Oracle | BENGALURU, KARNATAKA, India
View on infosec-jobs.com

Oracle EBS DevSecOps Developer

@ Accenture Federal Services | Arlington, VA
View on infosec-jobs.com

Information Security GRC Specialist - Risk Program Lead

@ Western Digital | Irvine, CA, United States
View on infosec-jobs.com

Senior Cyber Operations Planner (15.09)

@ OCT Consulting, LLC | Washington, District of Columbia, United States
View on infosec-jobs.com

AI Cybersecurity Architect

@ FactSet | India, Hyderabad, DVS, SEZ-1 – Orion B4; FL 7,8,9,11 (Hyderabad - Divyasree 3)
View on infosec-jobs.com
View more jobs