Alternatives and similar repositories for aws_ir_plugins:

Users that are interested in aws_ir_plugins are comparing it to the libraries listed below

• ThreatResponse / ThreatPrep
  Python module for evaluation of AWS account best practices around incident handling readieness.
  ☆55Updated 4 years ago
• toniblyx / aws-forensic-tools
  Tools for AWS forensics
  ☆63Updated 9 years ago
• ansorren / GDPatrol
  A Lambda-powered Security Orchestration framework for AWS GuardDuty
  ☆52Updated 5 years ago
• ThreatResponse / mad-king
  Proof of Concept Zappa Based AWS Persistence and Attack Platform
  ☆39Updated 4 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 6 years ago
• da667 / Autosuricata
  first commit
  ☆20Updated last year
• WarnerMedia / aws-guardduty-enterprise
  Manage GuardDuty At Enterprise Scale
  ☆22Updated 4 years ago
• disruptops / resource-counter
  This command line tool counts the number of resources in different categories across Amazon regions.
  ☆57Updated 5 years ago
• forestmonster / AWSLeR
  AWS Live Response
  ☆12Updated 7 years ago
• Securosis / AdvancedCloudsecTraining
  Repository for lab materials for the Advanced Cloud Security and Applied DevSecOps training class.
  ☆11Updated 5 years ago
• ThreatResponse / threatresponse_web
  Web based analysis platform for use with the AWS_IR command line tool.
  ☆17Updated 8 years ago
• swimlane / CLAW
  A packer utility to create and capture DFIR Image for use AWS & Azure
  ☆15Updated 5 years ago
• devsecops / firebolt
  A platform to create, catalog and deploy tests for tools such as Gauntlt, AttackIQ and Metasploit.
  ☆16Updated 8 years ago
• mozilla / ssm-acquire
  A python module for orchestrating content acquisitions and analysis via amazon ssm.
  ☆59Updated last year
• endgameinc / varna
  Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)
  ☆51Updated 2 years ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆27Updated 7 years ago
• tacticaljmp / aws-tool-comparison
  Overview about existing tools that can be useful for AWS auditing purposes.
  ☆15Updated 7 years ago
• teamdfir / sift-packer-legacy
  Packer.io Scripts to build the SIFT VM(s)
  ☆11Updated 4 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆43Updated 3 years ago
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 3 years ago
• jchrisfarris / detect-credential-compromise
  Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.
  ☆28Updated 5 years ago
• kf0jvt / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• 0xdefendA / defenda-data-lake
  defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events
  ☆16Updated last year
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 4 years ago
• jgamblin / Defensive-S3-Buckets
  Defensive S3 Bucket Squating
  ☆30Updated 7 years ago
• toniblyx / aws-scripts-4fun-and-profit
  Scripts for AWS amusement...
  ☆21Updated 2 years ago
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago
• DefectDojo / Documentation
  DefectDojo Documentation
  ☆17Updated 3 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 8 years ago