BlueGhost : Network Tool Designed To Assist Blue Teams In Banning Attackers From Linux Servers

BlueGhost tool utilises various Linux network tools and bash scripting to assist blue teams on defending Debian and Ubuntu based servers from malicious attackers. 

Scan/Ban shows connected IPs, scans IP addresses for open ports using nmap and whois search to gather reconnaissance on connected IPs, shows activity on the system, checks abuseipdb.com for reports and offers a ban function to ban unwanted IPs using iptables. 

  • UbanAnAddress a function to unban IPs.
  • ListAllBanned a function to list all banned IPs.
  • TraceRoute a function to perform traceroutes on IPs.
  • ScheduledJobs a function to list all scheduled jobs (cronjobs)
  • Apps a function to view all installed applications on the system

Also Read – BackBox : Tool To Perform Penetration Tests & Security Assessments

Installation

sudo git clone https://github.com/d4rk007/BlueGhost
cd BlueGhost
source install.sh
cd