Skip to content

Latest commit

 

History

History
66 lines (49 loc) · 2.08 KB

File metadata and controls

66 lines (49 loc) · 2.08 KB

HBV-2.0

🐾 HoneyBadger Vanguard (HBV) 2.0

Modular Threat Simulation + Detection Engineering Toolkit
Automates hardened lab environments, adversary emulation, and detection validation across Windows and Kali.

🚀 What is HBV?

HoneyBadger Vanguard 2.0 is a cross-platform toolkit for Red, Blue, and Purple Team operations. It accelerates endpoint hardening, tradecraft simulation, and SOC validation.

  • 🔐 Windows & Kali post-install hardening
  • 🎭 Tradecraft prep: AV exclusions, LOLBins, payload launchers
  • 🧪 BOF hunting with Volatility + YARA
  • 📈 Sigma + YARA auto-rule generation
  • 🛡️ Purple Team validation lab: Atomic Red Team, MITRE ATT&CK

🧰 Modules

Module Purpose
PimpMyWindows.ps1 GUI to toggle Secure Mode or Tradecraft Mode on Windows 11
HBV-Core.ps1 Master script for system tuning, logging, exclusions
HBV-HealthCheck.ps1 Validates host prerequisites and exports a readiness report
BOF_Hunter_GUI.ps1 YARA + Volatility GUI for BOF memory triage
repo_hunter.ps1 Clones & parses top cyber threat repos
auto_parse_hunting_results.ps1 Builds Sigma/YARA rules from hunting results

🏁 Quick Start

  1. Clone the repo:

    git clone https://github.com/MoSLoF/HBV-2.0.git
    cd HBV-2.0
  2. Run the GUI or core setup:

    .\PimpMyWindows.ps1
  3. Start a BOF hunt:

    .\BOF_Hunter_GUI.ps1
  4. Validate the host posture:

    .\HBV-HealthCheck.ps1
  5. Auto-generate detection rules:

    .\auto_parse_hunting_results.ps1

🔍 Health Check Insights

HBV-HealthCheck.ps1 inspects the local workstation for common lab misconfigurations before you launch a full orchestration run. It highlights missing prerequisites (such as Git or networking cmdlets) and exports a JSON report to %USERPROFILE%\HoneyCoreLogs that can be archived with other HBV artefacts. Use the -NoExport switch to suppress file output or provide -OutputPath to control where the report is written.