Repository navigation

#

incident-response

wazuh / wazuh 

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

安全complianceLoggingvulnerability-detectionCybersecurityfile-integrity-monitoringmalware-detectioncloud-securitycontainer-securitysecurity-automationsiemxdrconfiguration-assessementincident-responsepci-dsssecurity-hardeningwazuh
C
13152
15 分钟前
dastergon / awesome-sre 

A curated list of Site Reliability and Production Engineering resources.

SREproductionavailability监控post-mortemreliability-engineeringcapacity-planningservice-level-agreementscalabilityreliabilityalertingon-callpostmortemincident-responseAwesome ListsDevOpslist
12579
1 年前
kubeshark/kubeshark
kubeshark / kubeshark 

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes

Kubernetes微服务GoREST APIgRPCamqpkafkaRedismicroservices-applicationDevOpsdevops-toolssnifferobservabilitywiresharkcloud-nativeDockerforensicsincident-response
Go
11468
1 天前
upgundecha/howtheysre
upgundecha / howtheysre 

A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)

SREChaos EngineeringDevOps监控observabilityalertingincident-responseincident-managementpost-mortemon-callreliabilityinfrastructure安全Hacktoberfesthacktoberfest-accepted软件工程ml-ops
JavaScript
9429
1 个月前
toniblyx / my-arsenal-of-aws-security-tools 

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

cloudauditingincident-responseaws-inventoryiamdfircloudtrailaws-infrastructureaws-lambda安全
Shell
9275
10 个月前
meirwah / awesome-incident-response 

A curated list of tools for incident response

incident-response安全CybersecuritydfirAwesome Listslistincident-response-tooling
8375
1 年前
OneUptime / oneuptime 

OneUptime is the complete open-source observability platform.

DevOps监控incident-responseincident-managementstatus-pageobservabilityon-call
TypeScript
5926
1 小时前
0x4D31 / awesome-threat-detection 

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

Awesome Liststhreat-hunting安全detectionthreat-detectionincident-response
4296
1 年前
intelowlproject/IntelOwl
intelowlproject / IntelOwl 

IntelOwl: manage your Threat Intelligence at scale

安全Pythonthreat-intelligenceIoC (Disambiguation)incident-responsecyber-threat-intelligenceenrichmenthoneynetOSINTosint-pythonthreatintelmalware-analysisthreat-huntingHacktoberfestcyber-securityCybersecuritythreathuntingdfir
Python
4261
4 小时前
TheHive-Project/TheHive
TheHive-Project / TheHive 

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

mispsecurity-incidentsanalyzeriocsthehivedigital-forensicsincident-responseREST APIAPIScalainvestigationsdfirfreeOpen Sourceplatformcortexagplv3orchestrationincident-managementincident-response-tooling
Scala
3795
25 天前
Velocidex/velociraptor
Velocidex / velociraptor 

Digging Deeper....

incident-responseforensics-investigationsinventory-managementendpoint-securityendpoint-protectionendpoint-discoverydigital-forensics
Go
3399
4 小时前
volatilityfoundation / volatility3 

Volatility 3.0 development

forensicsincident-responseMalwarememoryPythonramvolatilityvolatility-framework
Python
3384
1 个月前
A-poc/BlueTeam-Tools
A-poc / BlueTeam-Tools 

Tools and Techniques for Blue Team / Incident Response

blue-teamblueteamcheatsheetincident-responsemalware-analysis工具vulnerability-managementWikiincidentHackathon-Kitcyber-securitydefender
3285
5 个月前
TracecatHQ / tracecat 

Open source Tines / Splunk SOAR alternative. All-in-one automation platform (workflows, tables, cases) for security and IT teams.

自动化安全OpenAPI SpecificationFastAPI监控NextpydanticCybersecurityworkflow-engineevent-drivenorchestration大语言模型低代码incident-response
Python
3130
3 小时前
sleuthkit / sleuthkit 

The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.

sleuthkittctntfsforensicsincident-response
C++
2853
10 小时前
Yamato-Security / hayabusa 

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

dfirthreathuntingWindowseventlogsRustsigmadetectionattackforensicsincidentresponsehayabusayamato安全Cybersecurityincident-responsesecurity-automationthreat-hunting
Rust
2775
4 天前
mattnotmax / cyberchef-recipes 

A list of cyber-chef recipes and curated links

cyberchefMalwaredfirincident-responsedata-manipulationcyberchef-recipesRegular expression
2129
1 年前
danieldurnea / FBI-tools 

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

forensicsOSINTCybersecurityHackingsecurity-automation安全Awesome Listsincident-responsepenetration-testingreconnaissancepentestingBug Bounty
2061
5 个月前
last-byte/PersistenceSniper
last-byte / PersistenceSniper 

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte

incident-responsemalware-detectionpersistencePowerShellpowershell-moduleregistrytechniquesWindows
PowerShell
2010
8 个月前
Bashfuscator / Bashfuscator 

A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.

BashLinuxlinux-shellobfuscationred-teamblue-teamevasionincident-responseCybersecurity
Python
1814
2 年前