cookpad / aws-falcon-data-forwarder
CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket
☆11Updated 4 years ago
Alternatives and similar repositories for aws-falcon-data-forwarder:
Users that are interested in aws-falcon-data-forwarder are comparing it to the libraries listed below
- Osquery Mangement Server☆114Updated 4 years ago
- Automated testing, generation & manipulation of #osquery packs☆72Updated 6 months ago
- ☆65Updated 11 months ago
- Falcon Data Replicator☆31Updated 2 weeks ago
- ☆45Updated 10 months ago
- ☆33Updated 6 years ago
- ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…☆162Updated last month
- Simple Docker-based quickstart for osquery, Fleet, and ELK stack☆63Updated last year
- Scripts from my book OS X Incident Response Scripting and Analysis -> https://www.amazon.com/dp/012804456X/ref=cm_sw_r_tw_dp_U_x_fQeLAb68…☆49Updated 8 years ago
- Recon Hunt Queries☆77Updated 3 years ago
- A tool that allows you to document and assess any security automation in your SOC☆46Updated 5 months ago
- Pokes users about outstanding security risks found by Crowdstrike Spotlight or vmware Workspace ONE so they secure their own endpoint.☆28Updated this week
- Convert cloudtrail data to MITRE ATT&CK Sightings☆80Updated 2 years ago
- A POC to implement Detection-as-Code with Terraform and Sumo Logic.☆27Updated last year
- ☆18Updated 3 years ago
- Slack bot which promotes Defense in Depth/Zero Trust security practices☆24Updated 2 years ago
- pocket guide for core detection engineering concepts☆28Updated last year
- A Terraform module for GRR: the distributed incident forensics and response framework☆51Updated 4 years ago
- Unleash the power of the Falcon Platform at the CLI☆117Updated this week
- Terraform provider to manage resource in the CrowdStrike falcon console.☆15Updated this week
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆62Updated 4 years ago
- Documentation on the Cyber Defense Matrix☆24Updated 2 years ago
- Remote Memory Acquisition Tool☆245Updated 4 years ago
- ☆42Updated last month
- ☆42Updated 4 years ago
- Security Alert Decoration☆27Updated this week
- ☆40Updated this week
- Start enforcing G Suite third-party apps via OAuth☆58Updated 6 years ago
- ☆118Updated last year
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆37Updated 3 years ago