magoo / Vault-for-Incident-RespondersLinks
Things to know when DFIR occurs near a vault deployment.
☆43Updated 7 years ago
Alternatives and similar repositories for Vault-for-Incident-Responders
Users that are interested in Vault-for-Incident-Responders are comparing it to the libraries listed below
Sorting:
- Python module for evaluation of AWS account best practices around incident handling readieness.☆55Updated 5 years ago
- Osquery Mangement Server☆114Updated 5 years ago
- Materials for the BSides NoVA/Charleston 2018 Bro Workshop☆14Updated 4 months ago
- Provide a shell like interface by utilizing osquery's distributed API☆81Updated 5 years ago
- Web based analysis platform for use with the AWS_IR command line tool.☆17Updated 9 years ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆22Updated 7 years ago
- Exfiltrate files via DNS☆95Updated 12 years ago
- Competition Infrastructure Management☆87Updated 3 years ago
- first commit☆20Updated 3 weeks ago
- A packer utility to create and capture DFIR Image for use AWS & Azure☆15Updated 5 years ago
- A Terraform module for GRR: the distributed incident forensics and response framework☆51Updated 5 years ago
- SANS Hunting on the Cheap☆35Updated 9 years ago
- Proof of Concept Zappa Based AWS Persistence and Attack Platform☆39Updated 5 years ago
- Paper and Links to Crimeware in the Modern Era☆31Updated 6 years ago
- Honeypot log processor to create OTX Pulse entries☆28Updated last year
- Basic Anomaly IDS capabilities with Python and Bro☆105Updated 7 years ago
- Collection of Auditd Examples and Presentations☆85Updated 4 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- ☆25Updated 6 years ago
- Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…☆21Updated 8 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆49Updated last month
- Security Onion Elastic Stack☆46Updated 4 years ago
- This repository is a curated list of pro bono incident response entities.☆21Updated 2 years ago
- module for osquery to load Bro logs into tables☆28Updated 10 years ago
- Using osquery for Mass Incident Detection & Response☆19Updated 9 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆29Updated 2 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2☆14Updated 4 years ago
- Deploy MISP Project software with Vagrant.☆45Updated 5 years ago