Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
-
Updated
May 24, 2024 - C
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...
OneUptime is the complete open-source observability platform.
AssemblyLine 4: File triage and malware analysis
The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
Collaborative Incident Response platform
This is the public roadmap for Waroom. We hope that by publishing the features we will add and their priorities, it will help you in your future planning. Customers can send feedback and inquiries through this repository.
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Digital Forensics Incident Response and Detection engineering: Análisis forense de artefactos comunes y no tan comunes. Técnicas anti-forense y detección de técnicas utilizadas por actores maliciosos para la evasión de sistemas de protección y monitorización.
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
🤖 Cybersecurity Automation & Investigation Assistant
Open source security data pipelines.
IntelOwl: manage your Threat Intelligence at scale
A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
A cross platform forensic parser written in Rust!
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
Digging Deeper....
Wazuh - Docker containers
Harness the power of Splunk for your investigations
Add a description, image, and links to the incident-response topic page so that developers can more easily learn about it.
To associate your repository with the incident-response topic, visit your repo's landing page and select "manage topics."