magoo / Vault-for-Incident-RespondersLinks
Things to know when DFIR occurs near a vault deployment.
☆43Updated 7 years ago
Alternatives and similar repositories for Vault-for-Incident-Responders
Users that are interested in Vault-for-Incident-Responders are comparing it to the libraries listed below
Sorting:
- Python module for evaluation of AWS account best practices around incident handling readieness.☆55Updated 5 years ago
- Provide a shell like interface by utilizing osquery's distributed API☆81Updated 5 years ago
- Materials for the BSides NoVA/Charleston 2018 Bro Workshop☆14Updated 2 months ago
- Web based analysis platform for use with the AWS_IR command line tool.☆17Updated 9 years ago
- first commit☆20Updated last year
- Osquery Mangement Server☆115Updated 4 years ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 7 years ago
- Exfiltrate files via DNS☆95Updated 11 years ago
- Proof of Concept Zappa Based AWS Persistence and Attack Platform☆39Updated 5 years ago
- A Terraform module for GRR: the distributed incident forensics and response framework☆51Updated 5 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Competition Infrastructure Management☆86Updated 3 years ago
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆48Updated 2 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- Basic Anomaly IDS capabilities with Python and Bro☆105Updated 7 years ago
- Looks for GitHub org users without 2FA turned on☆9Updated 9 years ago
- Using osquery for Mass Incident Detection & Response☆19Updated 9 years ago
- A packer utility to create and capture DFIR Image for use AWS & Azure☆15Updated 5 years ago
- Dockerfiles for NSM tools☆84Updated 8 years ago
- SANS Hunting on the Cheap☆35Updated 9 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 9 months ago
- Honeypot log processor to create OTX Pulse entries☆28Updated last year
- This repository is a curated list of pro bono incident response entities.☆20Updated 2 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- Deploy MISP Project software with Vagrant.☆43Updated 5 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Build Automated Machine Images for MISP☆28Updated 2 years ago
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆29Updated 2 years ago
- Paper and Links to Crimeware in the Modern Era☆31Updated 5 years ago
- A Slack bot to add security info to messages containing URLs, hashes and IPs☆71Updated 11 months ago