awesome-incident-response
A curated list of tools for incident response
7422apache-2.0
4 months ago
awesomeawesome-listcybersecurity
catalyst
Catalyst is a self-hosted, open source incident response platform and ticket sys
Vue309agpl-3.0
3 months ago
dfirdigital-forensicsincident-response
untitledgoosetool
Untitled Goose Tool is a robust and flexible hunt and incident response tool tha
Python902cc0-1.0
7 months ago
PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System
PowerShell1856other
4 months ago
incident-responsemalware-detectionpersistence
iris-web
Collaborative Incident Response platform
JavaScript1003lgpl-3.0
3 months ago
csirt-toolingdigital-forensicsdigital-forensics-incident-response
gsvsoc_cirt-playbook-battle-cards
Cyber Incident Response Team Playbook Battle Cards
352mit
6 months ago
cyber-security-teamcyber-threatscybersecurity
diffy
:no_entry: (DEPRECATED) Diffy is a triage tool used during cloud-centric securit
Python632apache-2.0
10 months ago
dfirforensicssecurity
AutoRuns
🚀AutoRuns is a PowerShell module that will help do live incident response and
PowerShell249other
7 months ago
awesome-event-ids
Collection of Event ID ressources useful for Digital Forensics and Incident Resp
569mit
5 months ago
dfirdigitalforensicsforensics
dfirtrack
DFIRTrack - The Incident Response Tracking Application
Python476other
9 months ago
dfirdigital-forensicsincident-management
dissect
Dissect is a digital forensics & incident response framework and toolset that al
882agpl-3.0
5 months ago
dfirdissectpython
uac
UAC is a Live Response collection script for Incident Response that makes use of
Shell714apache-2.0
4 months ago
aixcollectorcomputer-forensics
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do
Python10398apache-2.0
3 months ago
awsazurecis-benchmark
st2
StackStorm (aka "IFTTT for Ops") is event-driven automation for auto-remediation
Python5985apache-2.0
4 months ago
auto-remediationautomationchatops
dispatch
All of the ad-hoc things you're doing to manage incidents today, done for you, a
Python5121apache-2.0
yesterday
Aurora-Incident-Response
Incident Response Documentation made easy. Developed by Incident Responders for
JavaScript751apache-2.0
last year
incident-managementincident-responseincident-response-tooling
incident-response-docs
PagerDuty's Incident Response Documentation.
Dockerfile1013apache-2.0
last year
documentationincident-responseoncall
IRTriage
Incident Response Triage - Windows Evidence Collection for Forensic Analysis
AutoIt127
9 years ago
fastfinder
Incident Response - Fast suspicious file finder
Go230mit
3 years ago
dfirincident-responseinvestigation
ir-rescue
A Windows Batch script and a Unix Bash script to comprehensively collect host fo
Batchfile459other
4 years ago
bashbatchcybersecurity
Hoarder
This script is made to collect the most valiable artifacts for foreniscs or inci
Python189gpl-3.0
4 years ago
pyarascanner
A simple many-rules to many-files YARA scanner for incident response or malware
Python25apache-2.0
6 years ago
dfirincident-responsepython
CIRTKit
Tools for the Computer Incident Response Team :computer:
Python141mit
8 years ago
carbonblackdfirmalware-analysis
DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for
Python977mit
4 years ago
automationblue-teamblue-teams
CimSweep
CimSweep is a suite of CIM/WMI-based tools that enable the ability to perform in
PowerShell636bsd-3-clause
5 years ago
PowerSponse
PowerSponse is a PowerShell module focused on targeted containment and remediati
PowerShell36mit
3 years ago
cleanupcontainmentincident-response
react-native-launch-navigator
Description Navigate your world faster and easier with Google Maps. Over 220
Java144
2 years ago
gun-violence-data
A comprehensive, accessible database that contains records of over 260k US gun v
Python6
last year
data-sciencegun-violence-archivemachine-learning