Alternatives and similar repositories for aws_ir_plugins

Users that are interested in aws_ir_plugins are comparing it to the libraries listed below

• ThreatResponse / ThreatPrep
  Python module for evaluation of AWS account best practices around incident handling readieness.
  ☆55Updated 5 years ago
• toniblyx / aws-forensic-tools
  Tools for AWS forensics
  ☆65Updated 9 years ago
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆72Updated 3 years ago
• ThreatResponse / mad-king
  Proof of Concept Zappa Based AWS Persistence and Attack Platform
  ☆40Updated 5 years ago
• andrewbeard / broworkshop
  Materials for the BSides NoVA/Charleston 2018 Bro Workshop
  ☆14Updated 6 months ago
• ansorren / GDPatrol
  A Lambda-powered Security Orchestration framework for AWS GuardDuty
  ☆53Updated 6 years ago
• devsecops / firebolt
  A platform to create, catalog and deploy tests for tools such as Gauntlt, AttackIQ and Metasploit.
  ☆17Updated 9 years ago
• ThreatResponse / threatresponse_web
  Web based analysis platform for use with the AWS_IR command line tool.
  ☆17Updated 9 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆44Updated 7 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 6 years ago
• mozilla / ssm-acquire
  A python module for orchestrating content acquisitions and analysis via amazon ssm.
  ☆58Updated 2 years ago
• Securosis / BlackHatLabs
  ☆14Updated 8 years ago
• endgameinc / varna
  Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)
  ☆52Updated 2 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆44Updated 4 years ago
• forestmonster / AWSLeR
  AWS Live Response
  ☆11Updated 8 years ago
• Appliscale / cloud-security-audit
  A command line security audit tool for Amazon Web Services
  ☆82Updated 6 years ago
• andrewkrug / fargate-ir
  Proof of concept incident response demo using SSM and AWS Fargate.
  ☆14Updated 6 years ago
• endgameinc / aws-logsearch
  ☆25Updated 7 years ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 5 years ago
• awsdocs / aws-security-hub-user-guide
  The open source version of the AWS Security Hub documentation. To provide feedback or request changes, you can submit a pull request that…
  ☆35Updated 2 years ago
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆111Updated 5 years ago
• WarnerMedia / aws-guardduty-enterprise
  Manage GuardDuty At Enterprise Scale
  ☆22Updated 5 years ago
• disruptops / resource-counter
  This command line tool counts the number of resources in different categories across Amazon regions.
  ☆59Updated 6 years ago
• appsecco / alldaydevops-aism
  All Day DevOps - Automated Infrastructure Security Monitoring and Defence (ELK + AWS Lambda)
  ☆25Updated 9 years ago
• target / attack-navigator-docker
  A simple Docker container that serves the MITRE ATT&CK Navigator web app
  ☆27Updated 2 years ago
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆21Updated 3 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 9 years ago
• GSA / security-benchmarks
  GSA Security Benchmarks and Tools
  ☆21Updated 6 years ago
• kbroughton / azure_cis_scanner
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆54Updated 2 years ago
• jaylagorio / Craal
  Finding Valuable Needles in Global Source Code Haystacks with Automation
  ☆17Updated 4 years ago