meirwah / awesome-incident-response Goto Github PK
View Code? Open in Web Editor NEWA curated list of tools for incident response
License: Apache License 2.0
A curated list of tools for incident response
License: Apache License 2.0
This is a great list. Your readers might also find user reviews for all the major incident management tools on IT Central Station to be helpful.
For example, Everbridge IT Alerting is ranked as the top IT alerting and incident management tool according to our community. You can see what they have to say about this and other solutions here.
*Disclaimer: I work for IT Central Station.
DNSminer.net seems compromised and redirects to www.meinanutshell.com
the IP redirects to http://65.110.2.212/anonymous/
I have a ton of free stuff here
http://binaryforay.blogspot.com/
they often exceeds what commercial tools can do as well
Hello, I wrote a tool that can validate README links (valid URLs, not duplicate). It can be run when someone submits a pull request.
It is currently being used by
Examples
If you are interested, connect this repo to https://travis-ci.org/ and add a .travis.yml
file to the project.
See https://github.com/dkhamsing/awesome_bot for options, more information
Feel free to leave a comment ๐
So, I saw some additions that lean towards forensic analysis, although they can be used in IR. Any guidelines regarding this 'boundary'? From practice I know the boundary is of course quite shallow.
http://augmentd.co/ is no longer legitimate and now tries to install bad browser extension(s)
Why is MISP (https://github.com/MISP/MISP) the de facto standard security tool not included?
for second incident response playbook link: https://www.incidentresponse.com/playbooks/
Would you mind renaming the evidence collection sections, so the are grouped together or merge them at all? Other categories don't use the split for the OS.
Currently we have "Evidence Collection", "Linux Evidence Collection", "Windows Evidence Collection" and "OSX Evidence Collection".
We could rename the specifics to "Evidence Collection Linux", "Evidence Collection Windows" etc and move them together in the list so one find them more easily.
And would it be helpful to rename the generic "Evidence Collection" to something more accurate or remove that category and move the items to the OS sections?
It was suggested you might be interested in some of the tools mentioned here. I am hoping to find more time to expand on them soon as some of them still need some work to be as useful as I would like.
rshipp/awesome-malware-analysis@f026601
Hello !
Can you please add this DFIR tool to the list ?
https://github.com/YosfanEilay/ForensicMiner
Thank you !
Suggestion to add VolDiff to the list of memory analysis tools.
VolDiff: Malware Memory Footprint Analysis based on Volatility
https://github.com/aim4r/VolDiff
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.