Showcase your innovative cybersecurity solution to our dedicated audience of security professionals.
Reach out!
Darktrace is a cyber security solution that uses AI to detect and prevent cyber attacks in real-time.
A project that uses Athena and EventBridge to investigate API activity and notify of actions for incident response and misconfiguration detection.
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
Incident response framework focused on remote live forensics
A panic button app for triggering a ripple effect across apps responding to panic events
Automate security incident handling and facilitate real-time activities of incident handlers.
A collection of incident response methodologies for various security incidents, providing easy-to-use operational best practices.
A report on detecting lateral movement through tracking event logs, updated to include analysis of various tools and commands used by attackers.
Cortex XSOAR is a comprehensive SOAR platform that automates and standardizes security processes for faster response times and increased team productivity.
A web collaborative platform for incident responders to share technical details during investigations, shipped in Docker containers for easy installation and upgrades.
Collection of scripts and resources for DevSecOps, Security Automation and Automated Incident Response Remediation.
A standardized framework for describing and classifying cybersecurity incidents
A framework for improving detection strategies and alert efficacy.
Catalyst is a SOAR system that automates alert handling and incident response processes, adapting to your workflows and being open source.
Incident response and case management solution for efficient incident response and management.
A robust and flexible hunt and incident response tool for investigating AzureAD, Azure, and M365 environments.
Web-based tool for incident response with easy local installation using Docker.
A Security Orchestration, Automation and Response (SOAR) platform for incident response and threat hunting.
Request Tracker for Incident Response (RTIR) is a tool for incident response teams to manage incident reports, correlate data, and facilitate communication.
A simple maturity model for enterprise detection and response
An open-source SOAR tool for automating threat and incident response workflows using CACAO security playbooks.
DFIRTrack is an open source web application focused on incident response for handling major incidents with many affected systems, tracking system status, tasks, and artifacts.
CimSweep is a suite of CIM/WMI-based tools for incident response and hunting operations on Windows systems without the need to deploy an agent.
Dispatch helps manage security incidents by integrating with existing tools and automating incident response tasks.
A System for Abuse- and Incident Handling with log file analysis capabilities.
A collaborative and open-source incident response platform for sharing observables among analysts.
Python command line utility for incident response in AWS
A cybersecurity incident management platform for tracking and reporting incidents with agility and speed.
A DFIR console integrating various cybersecurity tools and frameworks for efficient incident response.
Repository of templates for Ayehu's workflows with the ability to design, execute, and automate IT and business processes.
Automated Digital Forensics and Incident Response (DFIR) software for rapid incident response and intrusion investigations.
A module-based AWS response tool for incident response in AWS environments.
A multi-platform open source tool for triaging suspect systems and hunting for Indicators of Compromise (IOCs) across thousands of endpoints.
Open-source, free, and scalable cyber threat intelligence and security incident response solution with improved performance and new features.
Incident response and digital forensics tool for transforming data sources and logs into graphs.
A public incident response process documentation used at PagerDuty
A Live Response collection script for Incident Response that automates the collection of artifacts from various Unix-like operating systems.
A framework for accumulating, describing, and classifying actionable Incident Response techniques
Shuffle Automation provides an open-source platform for security orchestration, automation, and response.
Incident response platform for automating alert handling and incident response procedures.
A modular incident response framework in Powershell that uses Powershell Remoting to collect data for incident response and breach hunts.
A DFIR Playbook Spec based on YAML for collaborative incident response processes.
Incident Response Documentation tool for tracking findings and tasks.
Detailed analysis of the event-stream incident and actions taken by npm Security.
A PHP based web application for managing postmortems with pluggable features.
Templates for incident response run-books tailored for AWS environments based on NIST guidelines.
A set of scripts for collecting forensic data from Windows and Unix systems respecting the order of volatility.
