The Open Source DevOps Assistant - solve problems twice as fast with an AI teammate
-
Updated
Jun 6, 2024 - Python
The Open Source DevOps Assistant - solve problems twice as fast with an AI teammate
🤖 Cybersecurity Automation & Investigation Assistant
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
An open source platform to support analysts to organise their case and tasks
A curated list of tools for incident response. With repository stars⭐ and forks🍴
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
yara detection rules for hunting with the threathunting-keywords project
Awesome list of keywords and artifacts for Threat Hunting sessions
OneUptime is the complete open-source observability platform.
The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes
GitHub Action that allows you to track your deployments on Waroom ( https://waroom.com ).
A PowerShell script for rapid initial incident response data collection on a potentially breached Windows system.
Digital Forensics Investigation Platform
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
Digging Deeper....
A collection of sources of documentation, as well as field best practices, to build/run a SOC
Open source security data pipelines.
IntelOwl: manage your Threat Intelligence at scale
This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.
Forensic Artifacts Collecting Toolkit
Add a description, image, and links to the incident-response topic page so that developers can more easily learn about it.
To associate your repository with the incident-response topic, visit your repo's landing page and select "manage topics."