spotify / terraform-google-grrLinks
A Terraform module for GRR: the distributed incident forensics and response framework
☆51Updated 5 years ago
Alternatives and similar repositories for terraform-google-grr
Users that are interested in terraform-google-grr are comparing it to the libraries listed below
Sorting:
- Remote Memory Acquisition Tool☆251Updated 5 years ago
- Osquery Mangement Server☆114Updated 5 years ago
- 1-Click push forensics evidence to the cloud☆141Updated last month
- This script is used to generate some basic detections of the aws security services☆71Updated 3 years ago
- Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.☆141Updated 2 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 7 years ago
- Python module for evaluation of AWS account best practices around incident handling readieness.☆55Updated 5 years ago
- Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers☆91Updated 8 years ago
- Threat Feed Aggregation, Made Easy☆168Updated 5 years ago
- Terraform stack to deploy ELK Threat Hunting on Amazon AWS.☆89Updated 6 years ago
- Security Monitoring Resolution Categories☆138Updated 3 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling…☆136Updated 3 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆176Updated 4 years ago
- A collection of notebooks built for defensive and offensive operations.☆77Updated 5 years ago
- InvestigationPlaybookSpec☆72Updated 8 years ago
- Simple Docker-based quickstart for osquery, Fleet, and ELK stack☆63Updated 2 years ago
- A Slack bot to add security info to messages containing URLs, hashes and IPs☆71Updated last year
- Automated Use Case Testing☆169Updated 7 years ago
- ☆55Updated 3 years ago
- Python installable command line utiltity for mitigation of host and key compromises.☆348Updated 4 years ago
- Salt States for Configuring the SIFT Workstation☆107Updated last week
- ☆34Updated 4 years ago
- Carbon Black API Resources☆93Updated 7 years ago
- Boilerplate Incident Response Plan from "Starting Up Security"☆164Updated 4 years ago
- misp-cloud - Cloud-ready images of MISP☆74Updated 3 years ago
- Proof of Concept Zappa Based AWS Persistence and Attack Platform☆39Updated 5 years ago
- Tools to assist in forensicating docker☆84Updated 7 months ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆110Updated 7 years ago
- Splunk Boss of the SOC v1 data set.☆112Updated 7 years ago