Netflix-Skunkworks / diffyLinks
(DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.
☆632Updated last year
Alternatives and similar repositories for diffy
Users that are interested in diffy are comparing it to the libraries listed below
Sorting:
- Python installable command line utiltity for mitigation of host and key compromises.☆347Updated 4 years ago
- Remote Memory Acquisition Tool☆251Updated 4 years ago
- Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)☆443Updated 2 years ago
- an osquery fleet manager☆618Updated 2 years ago
- A tool to help forensicate offline docker acquisitions☆548Updated 11 months ago
- for AWS Security material☆249Updated 3 years ago
- Hubble is a modular, open-source security compliance framework. The project provides on-demand profile-based auditing, real-time security…☆385Updated 2 years ago
- A repository for using osquery for incident detection and response☆859Updated last week
- Enforce ownership and data security within AWS☆448Updated 4 years ago
- Google Cloud Platform Security Tool☆234Updated 6 years ago
- AWS Security Tools (AST) in a simple Docker container.☆286Updated 4 years ago
- honeyλ - a simple, serverless application designed to create and monitor fake HTTP endpoints (i.e. URL honeytokens) automatically, on top…☆518Updated 6 years ago
- Aardvark is a multi-account AWS IAM Access Advisor API☆480Updated 10 months ago
- A UNIX security auditing tool based on several security frameworks☆317Updated 3 months ago
- A production-friendly malware scanner for your AWS cloud☆200Updated 4 years ago
- A Terraform module for GRR: the distributed incident forensics and response framework☆51Updated 5 years ago
- A honey token manager and alert system for AWS.☆320Updated 3 years ago
- BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.☆1,433Updated last year
- Fetch all public IP addresses tied to your AWS account. Works with IPv4/IPv6, Classic/VPC networking, and across all AWS services☆642Updated 4 years ago
- goSDL☆523Updated 2 years ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆456Updated 2 years ago
- Osquery Mangement Server☆114Updated 5 years ago
- Python-based utility that uses supervised machine learning to detect phishing domains from the Certificate Transparency log network.☆326Updated last year
- Dashboard to collect, analyze, and respond to reported phishing emails.☆293Updated 2 years ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆808Updated 5 years ago
- ☆83Updated 5 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆181Updated 6 years ago
- An open source, online threat modelling tool from OWASP☆486Updated last month
- VSAQ is an interactive questionnaire application to assess the security programs of third parties.☆854Updated 4 years ago
- The main project for the Unfetter-Discover application. This is the project that will hold the configuration files, the docker-compose f…☆413Updated 2 years ago