Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for incident response
incident-response
x
272 search results found
Awesome Sre
⭐
10,953
A curated list of Site Reliability and Production Engineering resources.
Kubeshark
⭐
10,247
The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes
Howtheysre
⭐
8,754
A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)
My Arsenal Of Aws Security Tools
⭐
8,549
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Wazuh
⭐
8,176
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Awesome Incident Response
⭐
6,852
A curated list of tools for incident response
Grr
⭐
4,571
GRR Rapid Response: remote live forensics for incident response
Awesome Threat Detection
⭐
3,331
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
Thehive
⭐
3,216
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Intelowl
⭐
3,108
IntelOwl: manage your Threat Intelligence at scale
Velociraptor
⭐
2,463
Digging Deeper....
Sleuthkit
⭐
2,419
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
Volatility3
⭐
2,010
Volatility 3.0 development
Cyberchef Recipes
⭐
1,920
A list of cyber-chef recipes and curated links
Blueteam Tools
⭐
1,871
Tools and Techniques for Blue Team / Incident Response
Hayabusa
⭐
1,800
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
Persistencesniper
⭐
1,695
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte
Oneuptime
⭐
1,680
OneUptime is the complete open-source observability platform.
Fir
⭐
1,615
Fast Incident Response
Bashfuscator
⭐
1,495
A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.
Response
⭐
1,298
Monzo's real-time incident response and reporting tool ⚡️
Cortex
⭐
1,237
Cortex: a Powerful Observable Analysis and Active Response Engine
Beagle
⭐
1,171
Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
Fbi Tools
⭐
1,153
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
Postmortem Templates
⭐
1,113
A collection of postmortem templates
Asn
⭐
1,095
ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server
Apt Hunter
⭐
1,045
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
Cyber Security
⭐
1,000
My cyber security tools
Incident Response Docs
⭐
974
PagerDuty's Incident Response Documentation.
Microsoft Eventlog Mindmap
⭐
969
Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...
Incident Playbook
⭐
907
GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
Awesome Soc
⭐
906
A collection of sources of documentation, as well as field best practices, to build/run a SOC
Intelmq
⭐
869
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
Iris Web
⭐
862
Collaborative Incident Response platform
Fame
⭐
820
FAME Automates Malware Evaluation
Watcher
⭐
795
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Open Source Security Guide
⭐
795
Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
Strelka
⭐
767
Real-time, container-based file scanning at enterprise scale
Cyberthreathunting
⭐
755
A collection of resources for Threat Hunters - Sponsored by Falcon Guard
Atomic Threat Coverage
⭐
740
Actionable analytics designed to combat threats
Kuiper
⭐
688
Digital Forensics Investigation Platform
Aurora Incident Response
⭐
676
Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
Thephish
⭐
653
ThePhish: an automated phishing email analysis tool
Datasurgeon
⭐
630
Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers and a lot More From Text
Azurehunter
⭐
626
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
Tenzir
⭐
612
Open source security data pipelines.
Patrowlmanager
⭐
598
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Opcde
⭐
590
OPCDE Cybersecurity Conference Materials
Uac
⭐
550
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
Wazuh Docker
⭐
532
Wazuh - Docker containers
Osquery Configuration
⭐
527
A repository for using osquery for incident detection and response
Awesome Event Ids
⭐
515
Collection of Event ID ressources useful for Digital Forensics and Incident Response
Awesome Cybersecurity Internships
⭐
474
a list of cybersecurity internships
Dfirtrack
⭐
464
DFIRTrack - The Incident Response Tracking Application
Live Forensicator
⭐
460
Powershell Script to aid Incidence Response and Live Forensics | Bash Script for MacOS Live Forensics and Incidence Response
Urlextractor
⭐
427
Information gathering & website reconnaissance | https://phishstats.info/
Incident Response Plan Template
⭐
422
A concise, directive, specific, flexible, and free incident response plan template
Cloud Forensics Utils
⭐
418
Python library to carry out DFIR analysis on the Cloud
Fcl
⭐
411
FCL (Fileless Command Lines) - Known command lines of fileless malicious executions
Cortex Analyzers
⭐
400
Cortex Analyzers Repository
Atc React
⭐
392
A knowledge base of actionable Incident Response techniques
Aws Customer Playbook Framework
⭐
391
This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.
Wazuh Dashboard Plugins
⭐
376
Plugins for Wazuh Dashboard
Memprocfs Analyzer
⭐
358
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
Dfir Orc
⭐
343
Forensics artefact collection tool for systems running Microsoft Windows
Kql
⭐
326
Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.
Osctrl
⭐
312
Fast and efficient osquery management
Ir Rescue
⭐
309
A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.
Gsvsoc_cirt Playbook Battle Cards
⭐
304
Cyber Incident Response Team Playbook Battle Cards
Azure Ad Incident Response Powershell Module
⭐
291
The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Product Group in conjunction with the Microsoft Detection and Response Team (DART), to assist in compromise response.
Securityresearcher Note
⭐
280
Cover various security approaches to attack techniques and also provides new discoveries about security breaches.
Forensictools
⭐
270
Collection of forensic tools
Awesome Cloudops Automation
⭐
265
Cloud-ops automation runbooks that are ready to use. Build your own automations using the hundreds of drag and drop actions included in the repository. Built on Jupyter Notebooks, our automation platform jumpstarts your SRE RunBook creation. 😎 published by the unSkript community.
Threathunting Keywords
⭐
252
Awesome list of keywords for Threat Hunting sessions
Pockint
⭐
251
A portable OSINT Swiss Army Knife for DFIR/OSINT professionals 🕵️ 🕵️ 🕵️
Patrowlengines
⭐
240
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Misp Taxonomies
⭐
238
Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.
Masterparser
⭐
238
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
Catalyst
⭐
237
Catalyst is an open source SOAR and ticket system that helps to automate alert handling and incident response processes
Threatpinchlookup
⭐
236
Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
Wazuh Ansible
⭐
227
Wazuh - Ansible playbook
Scot
⭐
227
Sandia Cyber Omni Tracker (SCOT)
Trawler
⭐
224
PowerShell script to help Incident Responders discover potential adversary persistence mechanisms.
Linuxcatscale
⭐
215
Incident Response collection and processing scripts with automated reporting scripts
Allinfosecnews_sources
⭐
212
A list of online news & info sources in the InfoSec/Cybersecurity space
Microsoft Sentinel Secops
⭐
211
Microsoft Sentinel SOC Operations
Assisted Log Enabler For Aws
⭐
203
Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.
Thehive4py
⭐
201
Python API Client for TheHive
Collect Memorydump
⭐
186
Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
Pypowershellxray
⭐
184
Python script to decode common encoded PowerShell scripts
Mde Dfir Resources
⭐
184
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
Awesome_incident_response
⭐
181
Awesome Incident Response
Awesome Memory Forensics
⭐
180
A curated list of awesome Memory Forensics for DFIR
Mindmaps
⭐
172
#ThreatHunting #DFIR #Malware #Detection Mind Maps
Litmus_test
⭐
168
Detecting ATT&CK techniques & tactics for Linux
Information Security Tasks
⭐
162
This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions
Infosechouse
⭐
162
Tools & Resources for Cyber Security Operations
Spyre
⭐
158
simple YARA-based IOC scanner
Assemblyline
⭐
157
AssemblyLine 4: File triage and malware analysis
Mthc
⭐
154
All-in-one bundle of MISP, TheHive and Cortex
1-100 of 272 search results
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.
