Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
-
Updated
May 29, 2024 - C
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Create, share, and run runbooks from your terminal.
🏴☠️ BST is an ever-evolving collection of 🛠 tools to help in security and administration day to day tasks 😉
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
🤖 Cybersecurity Automation & Investigation Assistant
Plugins for Wazuh Dashboard
Customizable SIEM and XDR powered by Real-Time correlation and Threat Intelligence
OneUptime is the complete open-source observability platform.
On demand query API for https://github.com/davidonzo/Threat-Intel project.
AssemblyLine 4: File triage and malware analysis
Forensic Artifacts Collecting Toolset
Collaborative Incident Response platform
Triage scripts for Intel-based Macs
This Python script uses the VirusTotal API to check the reputation of IP addresses and domains, fetching detailed security, location, and network information. It ensures necessary output directories are created.
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
IOC matching for incident responders, threat hunters, detection engineers, and security engineers.
A curated list of tools for incident response. With repository stars⭐ and forks🍴
IntelOwl: manage your Threat Intelligence at scale
Digging Deeper....
Add a description, image, and links to the incident-response topic page so that developers can more easily learn about it.
To associate your repository with the incident-response topic, visit your repo's landing page and select "manage topics."