veeral-patel / true-positiveLinks
Collaborative, web-based case management for incident response
☆21Updated last year
Alternatives and similar repositories for true-positive
Users that are interested in true-positive are comparing it to the libraries listed below
Sorting:
- Please use https://github.com/veeral-patel/true-positive instead☆67Updated 2 years ago
- ☆16Updated 4 years ago
- 🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …☆10Updated last year
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆88Updated last week
- Custom Kibana dashboards to secure and monitor Microsoft 365.☆13Updated last year
- Threat Detection & Anomaly Detection rules for popular open-source components☆52Updated 2 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 7 months ago
- Incident Response Report Using GitHub-Sphinx☆20Updated 5 years ago
- This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup…☆15Updated 4 years ago
- Pritunl Access Control System☆10Updated 2 years ago
- Incident Response Network Tools☆24Updated 3 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆44Updated last year
- Workflows for Shuffle☆23Updated 2 years ago
- Incident Response Plan for all major incidents including cheatsheets for both linux and windows☆14Updated 5 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- PowerShell - Endpoint Analysis Solution Your Windows Intranet Needs☆47Updated 6 months ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- The Cyber Security Platform MeliCERTes is part of the European Strategy for Cyber Security. MeliCERTes is a network for establishing conf…☆31Updated 3 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated this week
- ☆17Updated 3 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler☆12Updated 3 years ago
- A DFVFS Backed Forensic Viewer☆40Updated 5 years ago
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 3 years ago
- OwlH Master API Web User Interface☆12Updated last year
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- Windows Event Forwarding/Collection - A simple way to get quick, comprehensive logging for a Windows environment.☆15Updated 3 years ago
- ☆29Updated 4 years ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago