Repository navigation

#

incident-response

dastergon / awesome-sre 

A curated list of Site Reliability and Production Engineering resources.

SREproductionavailability监控post-mortemreliability-engineeringcapacity-planningservice-level-agreementscalabilityreliabilityalertingon-callpostmortemincident-responseAwesome ListsDevOpslist
12309
10 个月前
wazuh / wazuh 

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

安全complianceLoggingvulnerability-detectionCybersecurityfile-integrity-monitoringmalware-detectioncloud-securitycontainer-securitysecurity-automationsiemxdrconfiguration-assessementincident-responsepci-dsssecurity-hardeningwazuh
C++
12233
12 小时前
kubeshark/kubeshark
kubeshark / kubeshark 

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes

Kubernetes微服务GoREST APIgRPCamqpkafkaRedismicroservices-applicationDevOpsdevops-toolssnifferobservabilitywiresharkcloud-nativeDockerforensicsincident-response
Go
11304
3 天前
upgundecha/howtheysre
upgundecha / howtheysre 

A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)

SREChaos EngineeringDevOps监控observabilityalertingincident-responseincident-managementpost-mortemon-callreliabilityinfrastructure安全Hacktoberfesthacktoberfest-accepted软件工程ml-ops
JavaScript
9286
2 个月前
toniblyx / my-arsenal-of-aws-security-tools 

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

cloudauditingincident-responseaws-inventoryiamdfircloudtrailaws-infrastructureaws-lambda安全
Shell
9151
6 个月前
meirwah / awesome-incident-response 

A curated list of tools for incident response

incident-response安全CybersecuritydfirAwesome Listslistincident-response-tooling
8069
9 个月前
OneUptime / oneuptime 

OneUptime is the complete open-source observability platform.

DevOps监控incident-responseincident-managementstatus-pageobservabilityon-call
TypeScript
5088
16 小时前
0x4D31 / awesome-threat-detection 

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

Awesome Liststhreat-hunting安全detectionthreat-detectionincident-response
4118
9 个月前
intelowlproject/IntelOwl
intelowlproject / IntelOwl 

IntelOwl: manage your Threat Intelligence at scale

安全Pythonthreat-intelligenceIoC (Disambiguation)incident-responsecyber-threat-intelligenceenrichmenthoneynetOSINTosint-pythonthreatintelmalware-analysisthreat-huntingHacktoberfestcyber-securityCybersecuritythreathuntingdfir
Python
4100
2 天前
TheHive-Project/TheHive
TheHive-Project / TheHive 

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

mispsecurity-incidentsanalyzeriocsthehivedigital-forensicsincident-responseREST APIAPIScalainvestigationsdfirfreeOpen Sourceplatformcortexagplv3orchestrationincident-managementincident-response-tooling
Scala
3620
2 年前
Velocidex/velociraptor
Velocidex / velociraptor 

Digging Deeper....

incident-responseforensics-investigationsinventory-managementendpoint-securityendpoint-protectionendpoint-discoverydigital-forensics
Go
3204
10 小时前
A-poc/BlueTeam-Tools
A-poc / BlueTeam-Tools 

Tools and Techniques for Blue Team / Incident Response

blue-teamblueteamcheatsheetincident-responsemalware-analysis工具vulnerability-managementWikiincidentHackathon-Kitcyber-securitydefender
3075
22 天前
volatilityfoundation / volatility3 

Volatility 3.0 development

forensicsincident-responseMalwarememoryPythonramvolatilityvolatility-framework
Python
3024
1 天前
sleuthkit / sleuthkit 

The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.

sleuthkittctntfsforensicsincident-response
C++
2782
2 天前
TracecatHQ / tracecat 

The open source Tines / Splunk SOAR alternative for security and IT engineers. Built on simple YAML templates for integrations and response-as-code.

自动化安全OpenAPI SpecificationFastAPI监控NextpydanticCybersecurityworkflow-engineevent-drivenorchestration大语言模型低代码incident-response
Python
2575
7 小时前
Yamato-Security / hayabusa 

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

dfirthreathuntingWindowseventlogsRustsigmadetectionattackforensicsincidentresponse安全Cybersecurityincident-responsesecurity-automationthreat-hunting
Rust
2547
7 天前
mattnotmax / cyberchef-recipes 

A list of cyber-chef recipes and curated links

cyberchefMalwaredfirincident-responsedata-manipulationcyberchef-recipesRegular expression
2072
10 个月前
last-byte/PersistenceSniper
last-byte / PersistenceSniper 

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte

incident-responsemalware-detectionpersistencePowerShellpowershell-moduleregistrytechniquesWindows
PowerShell
1984
4 个月前
danieldurnea / FBI-tools 

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

forensicsOSINTCybersecurityHackingsecurity-automation安全Awesome Listsincident-responsepenetration-testingreconnaissancepentestingBug Bounty
1921
1 个月前
Bashfuscator / Bashfuscator 

A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.

BashLinuxlinux-shellobfuscationred-teamblue-teamevasionincident-responseCybersecurity
Python
1750
2 年前