AWS CloudSaga - Simulate security events in AWS
-
Updated
Jun 7, 2024 - Python
AWS CloudSaga - Simulate security events in AWS
Forensic Artifacts Collecting Toolkit
Forensic toolkit for iOS sysdiagnose feature
A curated list of tools for incident response. With repository stars⭐ and forks🍴
Triage scripts for Intel-based Macs
Highly useful Volatility-Malfind output parser for detecting Code/Process Injection patterns
AHA is an incident management & communication framework to provide real-time alert customers when there are active AWS event(s). For customers with AWS Organizations, customers can get aggregated active account level events of all the accounts in the Organization. Customers not using AWS Organizations still benefit alerting at the account level.
Go client library for accessing the Incident.io API
A curated list of tools for incident response
Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives output with cryptographic hashes.
Linux Incident Response Reporting
DFIRTrack - The Incident Response Tracking Application
Uses the Damerau-Levenshtein distance to find suspicious tasks running on endpoints in Windows.
Debug a sample in Windows using also API Monitor.
Client/Server system for maintaining safety of flight for multiple UAVs
Super simple incident report tool/page.
Check domain in question to VT
An extensible, end-to-end encrypted reverse shell that works across networks without port forwarding.
A Slack app used for incident management at Department for Education Digital
goHive5 is an unofficial API client library for TheHive5
Add a description, image, and links to the incident-response-tooling topic page so that developers can more easily learn about it.
To associate your repository with the incident-response-tooling topic, visit your repo's landing page and select "manage topics."