ThreatResponse / ThreatPrepLinks
Python module for evaluation of AWS account best practices around incident handling readieness.
☆55Updated 5 years ago
Alternatives and similar repositories for ThreatPrep
Users that are interested in ThreatPrep are comparing it to the libraries listed below
Sorting:
- Proof of Concept Zappa Based AWS Persistence and Attack Platform☆39Updated 5 years ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆22Updated 7 years ago
- Tools for AWS forensics☆63Updated 9 years ago
- Web based analysis platform for use with the AWS_IR command line tool.☆17Updated 9 years ago
- This script is used to generate some basic detections of the aws security services☆71Updated 3 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 7 years ago
- ☆14Updated 8 years ago
- Google Cloud Platform Security Tool☆234Updated 6 years ago
- Basic Anomaly IDS capabilities with Python and Bro☆105Updated 7 years ago
- Overview about existing tools that can be useful for AWS auditing purposes.☆15Updated 8 years ago
- Terraform stack to deploy ELK Threat Hunting on Amazon AWS.☆89Updated 6 years ago
- Materials for the BSides NoVA/Charleston 2018 Bro Workshop☆14Updated 3 months ago
- A Terraform module for GRR: the distributed incident forensics and response framework☆51Updated 5 years ago
- badbucket checks your s3 bucket for common misconfigurations☆24Updated 8 years ago
- ☆67Updated 8 years ago
- Updated incident response generator for training classes☆44Updated 4 years ago
- GCP and GSUITE security auditing scripts☆27Updated last year
- A python module for orchestrating content acquisitions and analysis via amazon ssm.☆58Updated last year
- A Lambda-powered Security Orchestration framework for AWS GuardDuty☆53Updated 5 years ago
- Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)☆52Updated 2 years ago
- Bringing DevOps to Forensics☆34Updated 10 years ago
- Exfiltrate files via DNS☆95Updated 12 years ago
- ☆12Updated 7 years ago
- Content for 'JIRA Risk Project' book published at LeanPub☆57Updated 7 years ago
- All Day DevOps - Automated Infrastructure Security Monitoring and Defence (ELK + AWS Lambda)☆24Updated 8 years ago
- AMIRA: Automated Malware Incident Response & Analysis☆151Updated last week
- Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon☆44Updated 4 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆64Updated 6 years ago
- ☆83Updated 5 years ago
- AWS EC2 and S3 Security Auditing Tool☆41Updated 11 years ago