awesome-incident-response
A curated list of tools for incident response
7154apache-2.0
last month
awesomeawesome-listcybersecurity
Aurora-Incident-Response
Incident Response Documentation made easy. Developed by Incident Responders for
JavaScript727apache-2.0
7 months ago
incident-managementincident-responseincident-response-tooling
incident-response-docs
PagerDuty's Incident Response Documentation.
Dockerfile1009apache-2.0
9 months ago
documentationincident-responseoncall
untitledgoosetool
Untitled Goose Tool is a robust and flexible hunt and incident response tool tha
Python894cc0-1.0
14 days ago
PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System
PowerShell1814other
6 days ago
incident-responsemalware-detectionpersistence
iris-web
Collaborative Incident Response platform
JavaScript942lgpl-3.0
7 days ago
csirt-toolingdigital-forensicsdigital-forensics-incident-response
gsvsoc_cirt-playbook-battle-cards
Cyber Incident Response Team Playbook Battle Cards
337mit
3 days ago
cyber-security-teamcyber-threatscybersecurity
diffy
:no_entry: (DEPRECATED) Diffy is a triage tool used during cloud-centric securit
Python635apache-2.0
4 months ago
dfirforensicssecurity
AutoRuns
🚀AutoRuns is a PowerShell module that will help do live incident response and
PowerShell237other
27 days ago
awesome-event-ids
Collection of Event ID ressources useful for Digital Forensics and Incident Resp
541mit
6 months ago
dfirdigitalforensicsforensics
dfirtrack
DFIRTrack - The Incident Response Tracking Application
Python465other
3 months ago
dfirdigital-forensicsincident-management
dissect
Dissect is a digital forensics & incident response framework and toolset that al
859agpl-3.0
6 days ago
dfirdissectpython
catalyst
Catalyst is an open source SOAR and ticket system that helps to automate alert h
Go272agpl-3.0
24 days ago
dfirdigital-forensicsincident-response
uac
UAC is a Live Response collection script for Incident Response that makes use of
Shell636apache-2.0
4 days ago
aixandroidcomputer-forensics
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do
Python9618apache-2.0
2 days ago
awsazurecis-benchmark
st2
StackStorm (aka "IFTTT for Ops") is event-driven automation for auto-remediation
Python5827apache-2.0
3 months ago
auto-remediationautomationchatops
dispatch
All of the ad-hoc things you're doing to manage incidents today, done for you, a
Python4525apache-2.0
2 months ago
config
Description Navigate your world faster and easier with Google Maps. Over 220
Shell20203mit
3 months ago
awesomedotfilesfish
gun-violence-data
A comprehensive, accessible database that contains records of over 260k US gun v
Python3
8 months ago
data-sciencegun-violence-archivemachine-learning
IRTriage
Incident Response Triage - Windows Evidence Collection for Forensic Analysis
AutoIt123
8 years ago
fastfinder
Incident Response - Fast suspicious file finder
Go218mit
2 years ago
dfirincident-responseinvestigation
ir-rescue
A Windows Batch script and a Unix Bash script to comprehensively collect host fo
Batchfile447other
3 years ago
bashbatchcybersecurity
Hoarder
This script is made to collect the most valiable artifacts for foreniscs or inci
Python187gpl-3.0
4 years ago
pyarascanner
A simple many-rules to many-files YARA scanner for incident response or malware
Python25apache-2.0
6 years ago
dfirincident-responsepython
CIRTKit
Tools for the Computer Incident Response Team :computer:
Python140mit
7 years ago
carbonblackdfirmalware-analysis
DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for
Python967mit
4 years ago
automationblue-teamblue-teams
CimSweep
CimSweep is a suite of CIM/WMI-based tools that enable the ability to perform in
PowerShell634bsd-3-clause
5 years ago
PowerSponse
PowerSponse is a PowerShell module focused on targeted containment and remediati
PowerShell36mit
2 years ago
cleanupcontainmentincident-response
react-native-launch-navigator
Description Navigate your world faster and easier with Google Maps. Over 220
Java134
last year