ThreatResponse / aws_ir_plugins
Core incident handling plugins for aws_ir cli, incident pony, and more.
☆21Updated 6 years ago
Alternatives and similar repositories for aws_ir_plugins:
Users that are interested in aws_ir_plugins are comparing it to the libraries listed below
- Python module for evaluation of AWS account best practices around incident handling readieness.☆55Updated 4 years ago
- Tools for AWS forensics☆63Updated 9 years ago
- Proof of Concept Zappa Based AWS Persistence and Attack Platform☆39Updated 4 years ago
- Manage GuardDuty At Enterprise Scale☆22Updated 4 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- This command line tool counts the number of resources in different categories across Amazon regions.☆59Updated 5 years ago
- A Java library for programmatically calculating OWASP Risk Rating scores☆18Updated 2 years ago
- A Lambda-powered Security Orchestration framework for AWS GuardDuty☆52Updated 5 years ago
- ☆11Updated 8 years ago
- Following repository contains source codes used in my two Books.☆11Updated 9 years ago
- Web based analysis platform for use with the AWS_IR command line tool.☆17Updated 8 years ago
- A python module for orchestrating content acquisitions and analysis via amazon ssm.☆59Updated last year
- A platform to create, catalog and deploy tests for tools such as Gauntlt, AttackIQ and Metasploit.☆16Updated 8 years ago
- Repository for lab materials for the Advanced Cloud Security and Applied DevSecOps training class.☆11Updated 5 years ago
- Updated incident response generator for training classes☆44Updated 3 years ago
- A packer utility to create and capture DFIR Image for use AWS & Azure☆15Updated 5 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 6 years ago
- Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)☆52Updated 2 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆64Updated 5 years ago
- All Day DevOps - Automated Infrastructure Security Monitoring and Defence (ELK + AWS Lambda)☆23Updated 8 years ago
- Overview about existing tools that can be useful for AWS auditing purposes.☆15Updated 7 years ago
- defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events☆16Updated 2 years ago
- first commit☆20Updated last year
- Tachikoma is a security alerting framework for human beings☆22Updated 6 years ago
- The open source version of the AWS Security Hub documentation. To provide feedback or request changes, you can submit a pull request that…☆35Updated last year
- A few quick recipes for those that do not have much time during the day☆22Updated 6 months ago
- Finding Valuable Needles in Global Source Code Haystacks with Automation☆17Updated 4 years ago
- Legal, procedural and policies document templates for operating MISP and information sharing communities☆38Updated 2 years ago
- Assess certain AWS network configurations☆12Updated 6 years ago
- Push-button Security Operations Center using Kubernetes☆12Updated 8 years ago