incident-response · GitHub Topics

A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)

翻译 - 精选的公开资源集合，介绍了世界各地的技术和精通技术的组织如何实践站点可靠性工程（SRE）

site-reliability-engineering sre chaos-engineering dev-ops devops monitoring observability alerting incident-response incident-management

JavaScript9.13 k

1 个月前

my-arsenal-of-aws-security-tools

@toniblyx

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

翻译 - 用于AWS安全的开源工具列表：防御性，攻击性，审计，DFIR等。

cloud auditing incident-response aws-inventory iam dfir cloudtrail aws-infrastructure aws-lambda security

Shell8.98 k

25 天前

oneuptime

@OneUptime

OneUptime is the complete open-source observability platform.

devops monitoring incident-response incident-management status-page observability on-call

TypeScript3.91 k

7 个月前

IntelOwl

@intelowlproject

IntelOwl: manage your Threat Intelligence at scale

翻译 - 英特尔®猫头鹰：从单个API大规模分析文件，域，IP

security-tools python threat-intelligence ioc incident-response cyber-threat-intelligence enrichment honeynet osint osint-python

Python3.85 k

1 天前

TheHive

@TheHive-Project

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

翻译 - TheHive：可扩展，开源和免费的安全事件响应平台

misp security-incidents analyzer iocs thehive digital-forensics incident-response rest api scala

Scala3.45 k

2 年前

BlueTeam-Tools

@A-poc

Tools and Techniques for Blue Team / Incident Response

blue-team blueteam cheatsheet incident-response malware-analysis tools vulnerability-management wiki incident resources

2.83 k

8 个月前

velociraptor

@Velocidex

Digging Deeper....

翻译 - 深层发掘....

incident-response forensics-investigations inventory-management endpoint-security endpoint-protection endpoint-discovery digital-forensics

Go2.75 k

5 个月前

cyberchef-recipes

@mattnotmax

A list of cyber-chef recipes and curated links

翻译 - 网络厨师食谱和精选链接列表

cyberchef malware dfir incident-response data-manipulation cyberchef-recipes regular-expression

1.98 k

5 个月前

PersistenceSniper

@last-byte

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with...

incident-response malware-detection persistence powershell powershell-module powershell-script registry techniques windows

PowerShell1.91 k

4 个月前

Incident-Playbook

@austinsonger

GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]

翻译 - 事件响应流程和手册 |目标：将剧本映射到 MITRE 攻击技术

cybersecurity playbook cybersecurity-playbook incident-response incident-management incidents mitre-attack mitre contributions-welcome contributors-welcome

1.41 k

4 个月前

APT-Hunter

@ahmedkhlief

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspi...

翻译 - APT-Hunter是Windows事件日志的威胁搜寻工具，紫色团队的心态使该工具能够检测Windows事件日志中隐藏的APT移动，以减少发现可疑活动的时间

threat-hunting purpleteam python3 windows-eventlog apt-attacks incident-response forensic-analysis windows-event-logs

Python1.26 k

16 天前

iris-web

@dfir-iris

Collaborative Incident Response platform

翻译 - 事件响应协作平台

forensic incident-response

JavaScript1.08 k

9 天前

Microsoft-eventlog-mindmap

@mdecrevoisier

Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...

翻译 - 一组思维导图提供了不同 #Windows 审计能力和事件日志文件的详细概述。

mindmap evtx windows incident-response

1.01 k

3 个月前

AzureHunter

@darkquasar

A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365

翻译 - 一个 Cloud Forensics Powershell 模块，用于对来自 Azure 和 O365 的数据运行威胁搜寻剧本

azure digital-forensics cloud-forensics cybersecurity azuresearcher azforensics threat-hunting threathunting incident-response unifiedauditlog

PowerShell766

2 年前

dfir-orc

@DFIR-ORC

Forensics artefact collection tool for systems running Microsoft Windows

翻译 - 适用于运行Microsoft Windows的系统的取证伪像收集工具

dfir incident-response collection

C++386

8 天前

Information-Security-Tasks

@bb1nfosec

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on pr...

翻译 - 此存储库仅为信息安全专业人员创建，他们每天工作以使自己掌握最新技能，我们每天可以每天贡献一小时的日常任务并每天处理问题陈述，请通过提供问题陈述和解决方案来做出贡献

pentesting auditing compliance forensics incident-response malware-analysis osint steganography information-security blueteam

HTML167

1 年前