Alternatives and similar repositories for ir-plan

Users that are interested in ir-plan are comparing it to the libraries listed below

• k-bailey / detection-engineering-maturity-matrix
  ☆95Updated 2 years ago
• pfpt-andrew / Rapid-Response-Reporting
  RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…
  ☆37Updated 3 years ago
• SophosRapidResponse / OSQuery
  ☆83Updated 2 months ago
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆162Updated 2 months ago
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆67Updated last month
• CyberConTraining / DDTTX
  DDTTX Tabletop Trainings
  ☆28Updated 3 years ago
• msraju / Incident-Response-Playbooks
  ☆43Updated 2 years ago
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆114Updated 7 months ago
• InfoSecInnovations / project-fantastic
  ☆73Updated 2 years ago
• bk-cs / rtr
  Real-time Response scripts and schema
  ☆111Updated last year
• pulsedive / certrss
  ☆118Updated last year
• malwarejake-public / conference-presentations
  Conference presentations
  ☆47Updated last year
• blackhillsinfosec / audit-inspector
  Manage Windows auditing policies.
  ☆35Updated last month
• rapid7 / insightvm-sql-queries
  InsightVM helpful SQL queries
  ☆64Updated 3 months ago
• sfakiana / SANS-CTI-Summit-2021
  Resources for SANS CTI Summit 2021 presentation
  ☆102Updated last year
• thinkst / canary-utils
  Collection of useful Canary tools
  ☆78Updated last month
• Silv3rHorn / BulkStrike
  BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.
  ☆42Updated 2 years ago
• garybushey / ProgrammingMicrosoftSentinel
  Programming Microsoft Sentinel book
  ☆25Updated last year
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆81Updated last year
• guardsight / gsvsoc_cybersecurity-incident-response-plan
  Cybersecurity Incident Response Plan
  ☆91Updated 4 years ago
• okta / customer-detections
  ☆62Updated last month
• keyboardcrunch / sentinelone-queries
  Repository of SentinelOne Deep Visibility queries.
  ☆127Updated 3 years ago
• FirmGuardian / backdoors-and-breaches-pcio
  A port of BHIS's Backdoors & Breaches for playingcards.io
  ☆62Updated 2 years ago
• strozfriedberg / greppin-logs
  2021 SANS DFIR Summit: Greppin' Logs
  ☆20Updated 3 years ago
• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆111Updated 5 months ago
• packetchaos / navi
  A Command-line tool which leverages the Tenable Vulnerability Management API to reduce the time it takes to get information that is commo…
  ☆76Updated this week
• megan201296 / gsuite-dfir
  ☆42Updated 4 years ago
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆72Updated 6 months ago
• Blumira / Logmira
  Logmira by Blumira has been created by Amanda Berlin as a helpful download of Microsoft Windows Domain Group Policy Object settings.
  ☆60Updated 7 months ago
• Truvis / Sentinel
  ☆29Updated 2 weeks ago