ThreatResponse / ThreatPrepLinks
Python module for evaluation of AWS account best practices around incident handling readieness.
☆55Updated 5 years ago
Alternatives and similar repositories for ThreatPrep
Users that are interested in ThreatPrep are comparing it to the libraries listed below
Sorting:
- Proof of Concept Zappa Based AWS Persistence and Attack Platform☆39Updated 5 years ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 7 years ago
- Web based analysis platform for use with the AWS_IR command line tool.☆17Updated 8 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 7 years ago
- Tools for AWS forensics☆63Updated 9 years ago
- This script is used to generate some basic detections of the aws security services☆71Updated 3 years ago
- ☆16Updated 8 years ago
- Exfiltrate files via DNS☆95Updated 11 years ago
- Basic Anomaly IDS capabilities with Python and Bro☆105Updated 7 years ago
- A Terraform module for GRR: the distributed incident forensics and response framework☆51Updated 5 years ago
- Google Cloud Platform Security Tool☆234Updated 6 years ago
- Content for 'JIRA Risk Project' book published at LeanPub☆57Updated 7 years ago
- All Day DevOps - Automated Infrastructure Security Monitoring and Defence (ELK + AWS Lambda)☆23Updated 8 years ago
- Terraform stack to deploy ELK Threat Hunting on Amazon AWS.☆89Updated 5 years ago
- badbucket checks your s3 bucket for common misconfigurations☆24Updated 8 years ago
- A python module for orchestrating content acquisitions and analysis via amazon ssm.☆58Updated last year
- ☆13Updated 6 years ago
- Overview about existing tools that can be useful for AWS auditing purposes.☆15Updated 7 years ago
- ☆25Updated 6 years ago
- A packer utility to create and capture DFIR Image for use AWS & Azure☆15Updated 5 years ago
- Updated incident response generator for training classes☆44Updated 4 years ago
- ☆67Updated 8 years ago
- Materials for the BSides NoVA/Charleston 2018 Bro Workshop☆14Updated last month
- Finding Valuable Needles in Global Source Code Haystacks with Automation☆17Updated 4 years ago
- AMIRA: Automated Malware Incident Response & Analysis☆151Updated 6 months ago
- first commit☆20Updated last year
- ☆83Updated 5 years ago
- A Lambda-powered Security Orchestration framework for AWS GuardDuty☆52Updated 5 years ago
- AWS EC2 and S3 Security Auditing Tool☆41Updated 11 years ago
- A Slack bot to add security info to messages containing URLs, hashes and IPs☆71Updated 11 months ago