p4gs / Okta-Incident-Response-PlaybookLinks
A generic security incident response playbook investigating and responding to potential compromises of Okta's internal systems, in the context of a customer or partner of Okta that uses their platform
☆18Updated 3 years ago
Alternatives and similar repositories for Okta-Incident-Response-Playbook
Users that are interested in Okta-Incident-Response-Playbook are comparing it to the libraries listed below
Sorting:
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆49Updated last year
- A MITRE ATT&CK Lookup Tool☆45Updated last year
- AIL project training materials☆35Updated 2 months ago
- Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations☆43Updated 3 years ago
- Windows Security Logging☆43Updated 3 years ago
- A python script to acquire multiple aws ec2 instances in a forensically sound-ish way☆38Updated 3 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Updated 7 months ago
- Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk☆12Updated 6 years ago
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Updated last year
- Penguin OS Forensic (or Flight) Recorder☆40Updated 8 months ago
- A few quick recipes for those that do not have much time during the day☆22Updated 10 months ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated 2 years ago
- Automatic detection engineering technical state compliance☆55Updated last year
- Track progress and keep notes while working through likethecoins' CTI Self Study Plan☆28Updated 3 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…☆40Updated 4 months ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆65Updated 3 years ago
- An npm package for extracting common IoC (Indicator of Compromise) from a block of text☆58Updated last week
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 4 years ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆29Updated 2 years ago
- An LLM and OCR based Indicator of Compromise Extraction Tool☆35Updated 9 months ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆31Updated 3 weeks ago
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆12Updated 3 years ago
- A basic Python program to check Cybersecurity & Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) Catalog☆22Updated 2 years ago
- Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.☆31Updated last year
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Updated 3 years ago