Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
-
Updated
Dec 3, 2019 - Python
#
incident-response
Here are 61 public repositories matching this topic...
Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
python
ioc
enrichment
osint
incident-response
observable
free-software
threatintel
virustotal
security-tools
threat-intelligence
honeynet
cyber-threat-intelligence
osint-python
-
Updated
Aug 11, 2020 - Python
FAME Automates Malware Evaluation
-
Updated
May 28, 2020 - Python
A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.
-
Updated
Feb 14, 2020 - Python
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
python
ioc
intelligence
alerts
automation
incident-response
malware
phishing
threat
cybersecurity
cert
csirt
feeds
handling
incident
ihap
-
Updated
Aug 11, 2020 - Python
Open source incident management and response platform.
-
Updated
Jun 5, 2020 - Python
Documentation of TheHive
api
open-source
platform
documentation
rest
incident-response
dfir
free-software
analyzer
free
misp
thehive
security-incidents
iocs
digital-forensics
analyst
cortex
administration-guide
thehive-project
-
Updated
Aug 12, 2020 - Python
Wazuh - Ruleset
security
elasticsearch
log-analysis
monitoring
incident-response
ids
intrusion-detection
pci-dss
compliance
security-hardening
loganalyzer
vulnerability-detection
ossec
openscap
wazuh
policy-monitoring
security-awareness
file-integrity-management
-
Updated
Aug 12, 2020 - Python
Cortex Analyzers Repository
python
open-source
ioc
json
enrichment
incident-response
observable
dfir
free-software
analyzer
free
thehive
digital-forensics
cortex
cyber-threat-intelligence
-
Updated
Aug 12, 2020 - Python
DFIRTrack - The Incident Response Tracking Application
-
Updated
Aug 6, 2020 - Python
Python script to decode common encoded PowerShell scripts
-
Updated
Jun 13, 2018 - Python
A portable OSINT Swiss Army Knife for DFIR/OSINT professionals 🕵️ 🕵️ 🕵️
python
osint
portable
incident-response
python3
dfir
infosec
tkinter-gui
tkinter-python
osinttool
incident-response-tooling
osint-python
infosec-19
osint-professionals
-
Updated
Jan 27, 2020 - Python
Imago is a python tool that extract digital evidences from images.
-
Updated
Sep 26, 2019 - Python
Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.
security
taxonomy
incident-response
malware
classification
information-exchange
misp-taxonomies
incident-classification
government-classification-markings
enisa-threat-taxonomy
incident-taxonomy
incident
misp-taxonomy
machine-tags
adversary
-
Updated
Jun 15, 2020 - Python
Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The results are presented in a Web layer to help defenders identify outliers and suspicious behavior on corporate environments.
-
Updated
Oct 29, 2019 - Python
A knowledge base of actionable Incident Response techniques
-
Updated
Jun 22, 2020 - Python
Python API Client for TheHive
python
api
open-source
incident-response
api-client
dfir
free-software
free
thehive
digital-forensics
-
Updated
Jul 27, 2020 - Python
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
api
ioc
automation
incident-response
orchestration
secops
threat-hunting
thehive
cortex
vulnerability-detection
vulnerability-management
vulnerability-scanners
security-scanner
security-automation
security-tools
threat-intelligence
patrowl
-
Updated
Jul 28, 2020 - Python
analyze a web-based network traffic 🕶 to detect central command and control servers
-
Updated
Jun 30, 2018 - Python
Explore Indicators of Compromise Automatically
incident-response
cybersecurity
threat-hunting
iocs
security-automation
security-tools
threat-intelligence
-
Updated
Feb 27, 2020 - Python
Extract BITS jobs from QMGR queue and store them as CSV records
-
Updated
Feb 1, 2018 - Python
An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.
-
Updated
Jan 30, 2018 - Python
Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
api
open-source
workflow
alert
rest
incident-response
python3
orchestration
dfir
free
microsoft-exchange
thehive
security-incidents
investigations
analyst
office365
agplv3
qradar
thehive-project
qradar-offense
-
Updated
Apr 7, 2020 - Python
This toolkit aims to help forensicators perform different kinds of acquisitions on iOS devices
-
Updated
May 21, 2020 - Python
A Lambda-powered Security Orchestration framework for AWS GuardDuty
aws
cloud
aws-lambda
incident-response
cybersecurity
siem
threatintel
aws-security
blueteam
cloudsecurity
soar
aws-guardduty
-
Updated
Dec 15, 2019 - Python
Graph Representation of MITRE ATT&CK's CTI data
python
neo4j
incident-response
cti
py2neo
threat-intelligence
mitre-attack
taxii2
stix2
mitre-taxii2
stixx2
cyberthreatintelligence
attack-cti
-
Updated
Nov 14, 2019 - Python
Python API Client for Cortex
-
Updated
May 25, 2020 - Python
A simple many-rules to many-files YARA scanner for incident response or malware zoos.
-
Updated
Jun 3, 2018 - Python
Improve this page
Add a description, image, and links to the incident-response topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the incident-response topic, visit your repo's landing page and select "manage topics."