Cortex-Analyzers Modified - SecTeam/CERT/SOC Security orchestration tools on steroids
-
Updated
May 3, 2020 - Python
Cortex-Analyzers Modified - SecTeam/CERT/SOC Security orchestration tools on steroids
QRadar to Redmine(as Ticketing System) Integration with API CALLS written in Python
FIRST.org Incident Response teams' contact information scraper
Incident Response in AWS with Alexa
Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
systeminfo command for offline system images
CLI program for automating the setup, configuration, and use of cybersecurity solutions
CLI for selecting and back-testing CloudWatch alarm configuration
A portable OSINT Swiss Army Knife for DFIR/OSINT professionals 🕵️ 🕵️ 🕵️
An extensible, end-to-end encrypted reverse shell that works across networks without port forwarding.
Check domain in question to VT
Uses the Damerau-Levenshtein distance to find suspicious tasks running on endpoints in Windows.
DFIRTrack - The Incident Response Tracking Application
Highly useful Volatility-Malfind output parser for detecting Code/Process Injection patterns
AWS CloudSaga - Simulate security events in AWS
The DNA test for websites
AHA is an incident management & communication framework to provide real-time alert customers when there are active AWS event(s). For customers with AWS Organizations, customers can get aggregated active account level events of all the accounts in the Organization. Customers not using AWS Organizations still benefit alerting at the account level.
Forensic toolkit for iOS sysdiagnose feature
Add a description, image, and links to the incident-response-tooling topic page so that developers can more easily learn about it.
To associate your repository with the incident-response-tooling topic, visit your repo's landing page and select "manage topics."