Ecosyste.ms: Repos
An open API service providing repository metadata for many open source software ecosystems.
GitHub topics: incident-response-tooling
Correia-jpv/fucking-awesome-incident-response
A curated list of tools for incident response. With repository stars⭐ and forks🍴
Size: 461 KB - Last synced: 4 days ago - Pushed: 4 days ago - Stars: 153 - Forks: 23
meirwah/awesome-incident-response
A curated list of tools for incident response
Size: 483 KB - Last synced: 4 days ago - Pushed: about 2 months ago - Stars: 7,178 - Forks: 1,484
cuhsat/fact
Forensic Artifacts Collecting Toolset
Language: Go - Size: 159 KB - Last synced: 3 days ago - Pushed: 7 days ago - Stars: 1 - Forks: 0
TheHive-Project/TheHive
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Language: Scala - Size: 41.2 MB - Last synced: 8 days ago - Pushed: over 1 year ago - Stars: 3,235 - Forks: 601
dfirtrack/dfirtrack
DFIRTrack - The Incident Response Tracking Application
Language: Python - Size: 6.75 MB - Last synced: 4 days ago - Pushed: 3 months ago - Stars: 466 - Forks: 75
piralla/Malfind-Parser
Highly useful Volatility-Malfind output parser for detecting Code/Process Injection patterns
Language: Python - Size: 8.79 KB - Last synced: 11 days ago - Pushed: 12 days ago - Stars: 0 - Forks: 0
iLert/dynamic-action-provider
Sample webservice illustrating the 2 endpoints needed to dynamically hook into iLert alert actions.
Language: JavaScript - Size: 8.79 KB - Last synced: 17 days ago - Pushed: about 2 years ago - Stars: 0 - Forks: 0
EC-DIGIT-CSIRC/sysdiagnose
Forensic toolkit for iOS sysdiagnose feature
Language: Python - Size: 329 KB - Last synced: 23 days ago - Pushed: 23 days ago - Stars: 105 - Forks: 6
andygrunwald/go-incident
Go client library for accessing the Incident.io API
Language: Go - Size: 59.6 KB - Last synced: 25 days ago - Pushed: about 1 month ago - Stars: 5 - Forks: 2
lawndoc/mediator
An extensible, end-to-end encrypted reverse shell that works across networks without port forwarding.
Language: Python - Size: 343 KB - Last synced: 9 days ago - Pushed: 6 months ago - Stars: 97 - Forks: 15
awslabs/aws-cloudsaga
AWS CloudSaga - Simulate security events in AWS
Language: Python - Size: 80.1 MB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 421 - Forks: 27
cyb3rfox/Aurora-Incident-Response
Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
Language: JavaScript - Size: 2.28 MB - Last synced: about 2 months ago - Pushed: 8 months ago - Stars: 722 - Forks: 77
aws-samples/aws-health-aware
AHA is an incident management & communication framework to provide real-time alert customers when there are active AWS event(s). For customers with AWS Organizations, customers can get aggregated active account level events of all the accounts in the Organization. Customers not using AWS Organizations still benefit alerting at the account level.
Language: Python - Size: 1.43 MB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 314 - Forks: 131
emrekybs/MrHandler
Linux Incident Response Reporting
Language: HTML - Size: 1.73 MB - Last synced: 2 months ago - Pushed: 2 months ago - Stars: 42 - Forks: 9
sandflysecurity/sandfly-entropyscan
Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives output with cryptographic hashes.
Language: Go - Size: 53.7 KB - Last synced: 2 months ago - Pushed: 2 months ago - Stars: 125 - Forks: 17
BSI-Bund/RdpCacheStitcher
RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.
Language: C++ - Size: 654 KB - Last synced: 3 months ago - Pushed: 9 months ago - Stars: 219 - Forks: 16
KaanSK/shomon
Shodan Monitoring integration for TheHive.
Language: Go - Size: 257 KB - Last synced: 24 days ago - Pushed: almost 2 years ago - Stars: 130 - Forks: 19
netevert/pockint
A portable OSINT Swiss Army Knife for DFIR/OSINT professionals 🕵️ 🕵️ 🕵️
Language: Python - Size: 2.42 MB - Last synced: 3 months ago - Pushed: 7 months ago - Stars: 259 - Forks: 48
FullTang/hunters_flare
Uses the Damerau-Levenshtein distance to find suspicious tasks running on endpoints in Windows.
Language: Python - Size: 5.02 MB - Last synced: 4 months ago - Pushed: 4 months ago - Stars: 0 - Forks: 0
giadom/Debugging_with_API_Monitor
Debug a sample in Windows using also API Monitor.
Size: 1.15 MB - Last synced: 4 months ago - Pushed: 4 months ago - Stars: 1 - Forks: 0
zam89/VT_Domain_Checker
Check domain in question to VT
Language: Python - Size: 57.6 KB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 0 - Forks: 0
b401/goHive5
goHive5 is an unofficial API client library for TheHive5
Language: Go - Size: 46.9 KB - Last synced: 7 months ago - Pushed: 7 months ago - Stars: 1 - Forks: 0
righettod/log4shell-payload-grabber 📦
Tool to try to retrieve the java class used as dropper for the RCE in the context of log4shell vulnerability.
Language: Java - Size: 11 MB - Last synced: 3 months ago - Pushed: over 2 years ago - Stars: 3 - Forks: 0
MutableSecurity/mutablesecurity 📦
CLI program for automating the setup, configuration, and use of cybersecurity solutions
Language: Python - Size: 2.66 MB - Last synced: 4 months ago - Pushed: over 1 year ago - Stars: 39 - Forks: 6
west-wind/FIRST.org-Scraper
FIRST.org Incident Response teams' contact information scraper
Language: Python - Size: 2.93 KB - Last synced: 8 months ago - Pushed: about 2 years ago - Stars: 0 - Forks: 0
timobrembeck/devops-chatbot 📦
Incident management chatbot for DevOps
Language: Java - Size: 31.4 MB - Last synced: 8 months ago - Pushed: over 4 years ago - Stars: 6 - Forks: 4
NextSecurity/Cortex-Analyzers-Modified Fork of TheHive-Project/Cortex-Analyzers
Cortex-Analyzers Modified - SecTeam/CERT/SOC Security orchestration tools on steroids
Language: Python - Size: 626 MB - Last synced: 8 months ago - Pushed: about 4 years ago - Stars: 6 - Forks: 0
availabl-co/cwtune
CLI for selecting and back-testing CloudWatch alarm configuration
Language: Python - Size: 50.8 KB - Last synced: 16 days ago - Pushed: 10 months ago - Stars: 10 - Forks: 0
ValtteriL/Detect-Log4Shell
Powershell script to check log files for Log4Shell exploitation
Language: PowerShell - Size: 24.4 KB - Last synced: 10 months ago - Pushed: over 2 years ago - Stars: 3 - Forks: 1
ManuelBerrueta/YARA-rules
Yara rules
Language: YARA - Size: 5.86 KB - Last synced: 10 months ago - Pushed: over 2 years ago - Stars: 1 - Forks: 0
cyentific-rni/misp-security-playbook-object
This is the workbench for designing and updating the "security-playbook" object template for the MISP project - https://github.com/MISP/misp-objects/blob/main/objects/security-playbook/definition.json
Size: 27.3 KB - Last synced: 10 months ago - Pushed: almost 2 years ago - Stars: 1 - Forks: 1
DFE-Digital/slack-incident-bot
A Slack app used for incident management at Department for Education Digital
Language: Ruby - Size: 237 KB - Last synced: about 1 month ago - Pushed: 7 months ago - Stars: 7 - Forks: 2
WesSec/VelociDeploy-o-Matic
Scripts to for ready-to-use Velociraptor instance deployment in Azure
Language: HCL - Size: 164 KB - Last synced: 12 months ago - Pushed: 12 months ago - Stars: 0 - Forks: 0
jitesoft/incidents
Super simple incident report tool/page.
Language: JavaScript - Size: 14.6 KB - Last synced: 23 days ago - Pushed: 6 months ago - Stars: 0 - Forks: 0
sandflysecurity/sandfly-file-decloak
Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
Language: Python - Size: 4.88 KB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 9 - Forks: 0
anil-yelken/pywirt
Pywirt - Python Windows Incident Response Toolkit
Language: Python - Size: 52.7 KB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 54 - Forks: 8
paulveillard/cybersecurity-incident-response
A collection of awesome tools, software, libraries, learning tutorials & videos, frameworks, best practices and technical resources about Incident Response & Management in Cybersecurity
Size: 1.06 MB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 19 - Forks: 4
AlecRandazzo/Packrat
Live system forensic collector
Language: Go - Size: 325 KB - Last synced: 25 days ago - Pushed: almost 2 years ago - Stars: 16 - Forks: 2
Rayraegah/postmortem
Get to the root cause of an issue, learn from it, and make sure it doesn’t happen again.
Size: 8.79 KB - Last synced: about 1 year ago - Pushed: about 5 years ago - Stars: 4 - Forks: 1
wickywanka/IncidentResponse_Automation
Incident Response in AWS with Alexa
Language: Python - Size: 2.87 MB - Last synced: about 1 year ago - Pushed: almost 2 years ago - Stars: 0 - Forks: 0
aniketdvd/webams
WebAMS is an Open Source web application for reporting and resolving incidents or tickets
Language: HTML - Size: 1.28 MB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 8 - Forks: 5
jonasw234/systeminfo.py
systeminfo command for offline system images
Language: Python - Size: 30.1 MB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 1 - Forks: 0
cweems/incident-management-ivr
This repository allows you to create a basic incident response IVR on Twilio.
Language: JavaScript - Size: 40 KB - Last synced: 11 months ago - Pushed: over 2 years ago - Stars: 0 - Forks: 1
chrisanag1985/QRadar_Redmine_Integration
QRadar to Redmine(as Ticketing System) Integration with API CALLS written in Python
Language: Python - Size: 62.5 KB - Last synced: about 1 year ago - Pushed: almost 3 years ago - Stars: 0 - Forks: 0