Security Operations for Incident Response
Tols and platforms for managing and optimizing security operations centers (SOCs). Task: Incident Response
Explore 51 curated tools and resources
RELATED TASKS
LATEST ADDITIONS
CBRX is a cloud-based platform that automates incident analysis and reporting for cybersecurity teams.
TheHive is a case management platform for security operations teams that facilitates incident response, threat analysis, and team collaboration.
Dropzone AI is an autonomous AI agent for SOCs that performs end-to-end investigations of security alerts, integrating with existing cybersecurity tools and data sources.
Exabeam Security Operations Platform is a cloud-native security platform that applies AI and automation to security operations workflows for threat detection, investigation, and response.
Darktrace is a cyber security solution that uses AI to detect and prevent cyber attacks in real-time.
A project that uses Athena and EventBridge to investigate API activity and notify of actions for incident response and misconfiguration detection.
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
Incident response framework focused on remote live forensics
A panic button app for triggering a ripple effect across apps responding to panic events
Automate security incident handling and facilitate real-time activities of incident handlers.
A collection of incident response methodologies for various security incidents, providing easy-to-use operational best practices.
A report on detecting lateral movement through tracking event logs, updated to include analysis of various tools and commands used by attackers.
Cortex XSOAR is a comprehensive SOAR platform that automates and standardizes security processes for faster response times and increased team productivity.
A web collaborative platform for incident responders to share technical details during investigations, shipped in Docker containers for easy installation and upgrades.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security