Awesome Open Source
Awesome Open Source
Combined Topics
incident-response
x
Advertising
📦 10
All Projects
Application Programming Interfaces
📦 124
Applications
📦 192
Artificial Intelligence
📦 78
Blockchain
📦 73
Build Tools
📦 113
Cloud Computing
📦 80
Code Quality
📦 28
Collaboration
📦 32
Command Line Interface
📦 49
Community
📦 83
Companies
📦 60
Compilers
📦 63
Computer Science
📦 80
Configuration Management
📦 42
Content Management
📦 175
Control Flow
📦 213
Data Formats
📦 78
Data Processing
📦 276
Data Storage
📦 135
Economics
📦 64
Frameworks
📦 215
Games
📦 129
Graphics
📦 110
Hardware
📦 152
Integrated Development Environments
📦 49
Learning Resources
📦 166
Legal
📦 29
Libraries
📦 129
Lists Of Projects
📦 22
Machine Learning
📦 347
Mapping
📦 64
Marketing
📦 15
Mathematics
📦 55
Media
📦 239
Messaging
📦 98
Networking
📦 315
Operating Systems
📦 89
Operations
📦 121
Package Managers
📦 55
Programming Languages
📦 245
Runtime Environments
📦 100
Science
📦 42
Security
📦 396
Social Media
📦 27
Software Architecture
📦 72
Software Development
📦 72
Software Performance
📦 58
Software Quality
📦 133
Text Editors
📦 49
Text Processing
📦 136
User Interface
📦 330
User Interface Components
📦 514
Version Control
📦 30
Virtualization
📦 71
Web Browsers
📦 42
Web Servers
📦 26
Web User Interface
📦 210
The Top 70 Incident Response Open Source Projects
Categories
>
Operations
>
Incident Response
Awesome Sre
⭐
6,367
A curated list of Site Reliability and Production Engineering resources.
My Arsenal Of Aws Security Tools
⭐
5,909
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Howtheysre
⭐
4,737
A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)
Awesome Incident Response
⭐
4,214
A curated list of tools for incident response
Wazuh
⭐
2,254
Wazuh - The Open Source Security Platform
Thehive
⭐
2,014
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Intelowl
⭐
1,834
Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Sleuthkit
⭐
1,831
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
Response
⭐
1,266
Monzo's real-time incident response and reporting tool ⚡️
Beagle
⭐
999
Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
Incident Response Docs
⭐
874
PagerDuty's Incident Response Documentation.
Velociraptor
⭐
777
Digging Deeper....
Bashfuscator
⭐
723
A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.
Cortex
⭐
701
Cortex: a Powerful Observable Analysis and Active Response Engine
Fame
⭐
676
FAME Automates Malware Evaluation
Cyberchef Recipes
⭐
674
A list of cyber-chef recipes and curated links
Intelmq
⭐
644
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
Osquery Configuration
⭐
626
A repository for using osquery for incident detection and response
Cyphon
⭐
551
Open source incident management and response platform.
Opcde
⭐
546
OPCDE Cybersecurity Conference Materials
Fcl
⭐
414
FCL (Fileless Command Lines) - Known command lines of fileless malicious executions
Patrowlmanager
⭐
387
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Watcher
⭐
367
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Thehivedocs
⭐
364
Documentation of TheHive
Apt Hunter
⭐
354
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
Urlextractor
⭐
344
Information gathering & website reconnaissance | https://phishstats.info/
Ir Rescue
⭐
320
A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.
Wazuh Ruleset
⭐
308
Wazuh - Ruleset
Asn
⭐
292
ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation and geolocation lookup tool / Traceroute server
Kuiper
⭐
288
Digital Forensics Investigation Platform
Threatpinchlookup
⭐
263
Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
Vast
⭐
258
🔮 Visibility Across Space and Time – The network telemetry engine for data-driven security investigations.
Cortex Analyzers
⭐
258
Cortex Analyzers Repository
Atc React
⭐
256
A knowledge base of actionable Incident Response techniques
Dfirtrack
⭐
252
DFIRTrack - The Incident Response Tracking Application
Wazuh Docker
⭐
228
Wazuh - Docker containers
Wazuh Kibana App
⭐
224
Wazuh - Kibana plugin
Dfir Orc
⭐
218
Forensics artefact collection tool for systems running Microsoft Windows
Scot
⭐
208
Sandia Cyber Omni Tracker (SCOT)
Pockint
⭐
205
A portable OSINT Swiss Army Knife for DFIR/OSINT professionals 🕵️ 🕵️ 🕵️
Aurora Incident Response
⭐
196
Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
Pypowershellxray
⭐
194
Python script to decode common encoded PowerShell scripts
Litmus_test
⭐
194
Detecting ATT&CK techniques & tactics for Linux
Osctrl
⭐
189
Fast and efficient osquery management
Imago Forensics
⭐
182
Imago is a python tool that extract digital evidences from images.
Weffles
⭐
178
Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI
Misp Taxonomies
⭐
170
Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.
Patrowlengines
⭐
167
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Oriana
⭐
155
Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The results are presented in a Web layer to help defenders identify outliers and suspicious behavior on corporate environments.
Thehive4py
⭐
150
Python API Client for TheHive
Edr Testing Script
⭐
139
Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads
Mthc
⭐
136
All-in-one bundle of MISP, TheHive and Cortex
Wazuh Ansible
⭐
119
Wazuh - Ansible playbook
Invoke Liveresponse
⭐
118
Invoke-LiveResponse
Patrowldocs
⭐
110
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Information Security Tasks
⭐
109
This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions
Siac
⭐
101
SIAC is an enterprise SIEM built on open-source technology.
Awesome
⭐
96
A curated list of awesome things related to TheHive & Cortex
Threathunt
⭐
93
ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.
Wazuh Documentation
⭐
82
Wazuh - Project documentation
Ioc Explorer
⭐
76
Explore Indicators of Compromise Automatically
Yara Endpoint
⭐
75
Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
Wheel Of Misfortune
⭐
61
A role-playing game for incident management training
Scripting
⭐
47
PS / Bash / Python / Other scripts For FUN!
Ios Triage
⭐
46
incident response tool for iOS devices
Historicprocesstree
⭐
46
An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.
Analyst Casefile
⭐
41
Maltego CaseFile entities for information security investigations, malware analysis and incident response
Cortex4py
⭐
25
Python API Client for Cortex
Docker Templates
⭐
23
Docker configurations for TheHive, Cortex and 3rd party tools
Wazuh Chef
⭐
14
Wazuh - Chef cookbooks
1-70 of 70 projects
Advertising
📦 10
All Projects
Application Programming Interfaces
📦 124
Applications
📦 192
Artificial Intelligence
📦 78
Blockchain
📦 73
Build Tools
📦 113
Cloud Computing
📦 80
Code Quality
📦 28
Collaboration
📦 32
Command Line Interface
📦 49
Community
📦 83
Companies
📦 60
Compilers
📦 63
Computer Science
📦 80
Configuration Management
📦 42
Content Management
📦 175
Control Flow
📦 213
Data Formats
📦 78
Data Processing
📦 276
Data Storage
📦 135
Economics
📦 64
Frameworks
📦 215
Games
📦 129
Graphics
📦 110
Hardware
📦 152
Integrated Development Environments
📦 49
Learning Resources
📦 166
Legal
📦 29
Libraries
📦 129
Lists Of Projects
📦 22
Machine Learning
📦 347
Mapping
📦 64
Marketing
📦 15
Mathematics
📦 55
Media
📦 239
Messaging
📦 98
Networking
📦 315
Operating Systems
📦 89
Operations
📦 121
Package Managers
📦 55
Programming Languages
📦 245
Runtime Environments
📦 100
Science
📦 42
Security
📦 396
Social Media
📦 27
Software Architecture
📦 72
Software Development
📦 72
Software Performance
📦 58
Software Quality
📦 133
Text Editors
📦 49
Text Processing
📦 136
User Interface
📦 330
User Interface Components
📦 514
Version Control
📦 30
Virtualization
📦 71
Web Browsers
📦 42
Web Servers
📦 26
Web User Interface
📦 210
