Trending repositories for topic incident-response
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
A curated list of Site Reliability and Production Engineering resources.
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
A curated list of tools for incident response
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital...
A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
Open source templates you can use to bootstrap your security programs
ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server
Collection of tool you need to have in your Endpoint Detection and Response arsenal
A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
Collection of tool you need to have in your Endpoint Detection and Response arsenal
A curated list of awesome Memory Forensics for DFIR
A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
A curated list of tools for incident response. With repository stars⭐ and forks🍴
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
Open source templates you can use to bootstrap your security programs
On-Call Assistant for Prometheus Alerts - Get a head start on fixing alerts with AI investigation
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital...
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
Awesome list of keywords and artifacts for Threat Hunting sessions
ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
A curated list of Site Reliability and Production Engineering resources.
A curated list of tools for incident response
The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and cluste...
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital...
On-Call Assistant for Prometheus Alerts - Get a head start on fixing alerts with AI investigation
A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Open source templates you can use to bootstrap your security programs
A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...
A curated list of awesome Memory Forensics for DFIR
A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
On-Call Assistant for Prometheus Alerts - Get a head start on fixing alerts with AI investigation
Collection of tool you need to have in your Endpoint Detection and Response arsenal
SEAL 911 is a project designed to give users, developers, and security researchers an accessible way to connect with a small group of highly trusted security professionals in case of emergency.
Open source templates you can use to bootstrap your security programs
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
Awesome list of keywords and artifacts for Threat Hunting sessions
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
A curated list of tools for incident response. With repository stars⭐ and forks🍴
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
A curated list of Site Reliability and Production Engineering resources.
On-Call Assistant for Prometheus Alerts - Get a head start on fixing alerts with AI investigation
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and cluste...
A curated list of tools for incident response
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
OneUptime is the complete open-source observability platform.
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD an...
A collection of sources of documentation, as well as field best practices, to build/run a SOC
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
I developed a rigorous cybersecurity project portfolio on mock clients covering NIST, audits, Linux, SQL, assets, threats, vulnerabilities, detection, incident response, escalation, Wireshark, tcpdump...
On-Call Assistant for Prometheus Alerts - Get a head start on fixing alerts with AI investigation
Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...
Deauthalyzer is a script designed to monitor WiFi networks and detect deauthentication attacks. It utilizes packet sniffing and analysis techniques to identify deauthentication attack packets and prov...
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
Collection of tool you need to have in your Endpoint Detection and Response arsenal
⛳️ PASS: ITIL 4 Foundation (IT Service Management) by learning based on our Questions & Answers (Q&A) Practice Tests Exams.
A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
Open-source AI copilot that lets you chat with your observability data and code 🧙♂️
A curated list of awesome Memory Forensics for DFIR
SEAL 911 is a project designed to give users, developers, and security researchers an accessible way to connect with a small group of highly trusted security professionals in case of emergency.
Awesome list of keywords and artifacts for Threat Hunting sessions
An open source platform to support analysts to organise their case and tasks
Hands-on cybersecurity projects to enhance skills in phishing investigation, malware analysis, network intrusion detection, and DDoS attack response.
On-Call Assistant for Prometheus Alerts - Get a head start on fixing alerts with AI investigation
Open source templates you can use to bootstrap your security programs
practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response
A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
Open-source AI copilot that lets you chat with your observability data and code 🧙♂️
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
SEAL 911 is a project designed to give users, developers, and security researchers an accessible way to connect with a small group of highly trusted security professionals in case of emergency.
Hands-on cybersecurity projects to enhance skills in phishing investigation, malware analysis, network intrusion detection, and DDoS attack response.
A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
OneUptime is the complete open-source observability platform.
A curated list of Site Reliability and Production Engineering resources.
A curated list of tools for incident response
The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and cluste...
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
Open source templates you can use to bootstrap your security programs
On-Call Assistant for Prometheus Alerts - Get a head start on fixing alerts with AI investigation
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)
A collection of sources of documentation, as well as field best practices, to build/run a SOC
A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you come from where did you go) in Security Incidents and Threat Hunts
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
On-Call Assistant for Prometheus Alerts - Get a head start on fixing alerts with AI investigation
PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response
Customizable SIEM and XDR powered by Real-Time correlation and Threat Intelligence
yara detection rules for hunting with the threathunting-keywords project
An open source platform to support analysts to organise their case and tasks
Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indicator matches.
An opensource incident management platform integrating with Slack.
⛳️ PASS: ITIL 4 Foundation (IT Service Management) by learning based on our Questions & Answers (Q&A) Practice Tests Exams.
PowerShell Digital Forensics & Incident Response Scripts.
OneUptime is the complete open-source observability platform.
Powershell script to help Speed up Threat hunting incident response processes
