Security Operations

Tols and platforms for managing and optimizing security operations centers (SOCs).Explore 124 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

RELATED TASKS

access-control (1)ai (9)ai-powered-security (1)ai-security (1)alert-handling (5)analytics (5)appsec (9)appsec-tool (1)asset-inventory (1)audit (1)

PINNED

PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
1
Commercial
Offensive Security
Ai
Penetration Testing
Automation
Security Testing
Exploitation
Reconnaissance
Reporting
Security Assessment
Offensive Security
Vulnerability Exploitation
PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
1
Commercial
Offensive Security
Ai
Penetration Testing
Automation
+7
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
0
Commercial
Threat Management
Threat Intelligence
Detection Rules
Siem
Security Operations
Cti
Threat Detection
Security Monitoring
Rule Management
Threat Hunting
Security Information And Event Management
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
0
Commercial
Threat Management
Threat Intelligence
Detection Rules
Siem
+7
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

AWS Incident Response Investigation of API activity using Athena and notification of actions using EventBridge
A project that uses Athena and EventBridge to investigate API activity and notify of actions for incident response and misconfiguration detection.
0
Free
Security Operations
Cloudtrail
Incident Response
Misconfiguration
Security Incident Response
AWS Incident Response Investigation of API activity using Athena and notification of actions using EventBridge
A project that uses Athena and EventBridge to investigate API activity and notify of actions for incident response and misconfiguration detection.
0
Free
Security Operations
Cloudtrail
Incident Response
Misconfiguration
+1
SyntheticSun
A defense-in-depth security automation and monitoring framework utilizing threat intelligence, machine learning, and serverless technologies.
0
Free
Security Operations
Aws
Machine Learning
Threat Intelligence
Security Automation
Serverless
Kibana
SyntheticSun
A defense-in-depth security automation and monitoring framework utilizing threat intelligence, machine learning, and serverless technologies.
0
Free
Security Operations
Aws
Machine Learning
Threat Intelligence
+3
Mature SIEM Environment for SOAR Implementation
A mature SIEM environment is critical for successful SOAR implementation.
0
Free
Security Operations
Siem
Soar
Mature SIEM Environment for SOAR Implementation
A mature SIEM environment is critical for successful SOAR implementation.
0
Free
Security Operations
Siem
Soar
Admyral
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
0
Free
Security Operations
Incident Response
Case Management
Workflow Automation
Alert Handling
Admyral
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
0
Free
Security Operations
Incident Response
Case Management
Workflow Automation
+1
sysmon-modular
A Sysmon configuration repository for customizing Microsoft Sysinternals Sysmon configurations with modular setup.
0
Free
Security Operations
Sysmon
Sysinternals
Configuration
Repository
sysmon-modular
A Sysmon configuration repository for customizing Microsoft Sysinternals Sysmon configurations with modular setup.
0
Free
Security Operations
Sysmon
Sysinternals
Configuration
+1
Hardentools
Tool to disable vulnerable features in Windows and popular applications for enhanced security.
0
Free
Security Operations
Appsec
Binary Security
Windows
Security Hardening
Security Configuration
Hardentools
Tool to disable vulnerable features in Windows and popular applications for enhanced security.
0
Free
Security Operations
Appsec
Binary Security
Windows
+2
GRR Rapid Response
Incident response framework focused on remote live forensics
0
Free
Security Operations
Incident Response
Forensics
Python
GRR Rapid Response
Incident response framework focused on remote live forensics
0
Free
Security Operations
Incident Response
Forensics
Python
Shuffle
Shuffle is a platform for automating security workflows with confidence, offering templates, collaboration tools, and a large app library.
0
Free
Security Operations
Automation
Collaboration
Integration
No Code
Shuffle
Shuffle is a platform for automating security workflows with confidence, offering templates, collaboration tools, and a large app library.
0
Free
Security Operations
Automation
Collaboration
Integration
+1
Stronghold
Stronghold is the easiest way to securely configure your Mac.
0
Free
Security Operations
Macos
Security
Configuration
Firewall
Logging
Stronghold
Stronghold is the easiest way to securely configure your Mac.
0
Free
Security Operations
Macos
Security
Configuration
+2
Shapeshifter
A GraphQL security testing tool
0
Free
Security Operations
Graphql
Security Testing
Security Tool
Shapeshifter
A GraphQL security testing tool
0
Free
Security Operations
Graphql
Security Testing
Security Tool
Ripple
A panic button app for triggering a ripple effect across apps responding to panic events
0
Free
Security Operations
Appsec
Incident Response
Ripple
A panic button app for triggering a ripple effect across apps responding to panic events
0
Free
Security Operations
Appsec
Incident Response
InvalidSign
Tool to bypass endpoint solutions blocking known 'malicious' signed applications by obtaining valid signed files with different hashes.
0
Free
Security Operations
Appsec
Binary Security
File Analysis
Hash Calculator
Malware Detection
InvalidSign
Tool to bypass endpoint solutions blocking known 'malicious' signed applications by obtaining valid signed files with different hashes.
0
Free
Security Operations
Appsec
Binary Security
File Analysis
+2
Datadog
Datadog offers a comprehensive suite of cybersecurity tools for various aspects of application and infrastructure monitoring.
0
Free
Security Operations
Monitoring
Infrastructure
Serverless
Cloud
Log Management
Security
Datadog
Datadog offers a comprehensive suite of cybersecurity tools for various aspects of application and infrastructure monitoring.
0
Free
Security Operations
Monitoring
Infrastructure
Serverless
+3
MozDef
Automate security incident handling and facilitate real-time activities of incident handlers.
0
Free
Security Operations
Incident Response
Security Operations
MozDef
Automate security incident handling and facilitate real-time activities of incident handlers.
0
Free
Security Operations
Incident Response
Security Operations

Security Operations

RELATED TASKS

PINNED

PTJunior

PTJunior

CTIChef.com Detection Feeds

CTIChef.com Detection Feeds

ImmuniWeb® Discovery

ImmuniWeb® Discovery

Checkmarx SCA

Checkmarx SCA

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

AWS Incident Response Investigation of API activity using Athena and notification of actions using EventBridge

AWS Incident Response Investigation of API activity using Athena and notification of actions using EventBridge

SyntheticSun

SyntheticSun

Mature SIEM Environment for SOAR Implementation

Mature SIEM Environment for SOAR Implementation

Admyral

Admyral

sysmon-modular

sysmon-modular

Hardentools

Hardentools

GRR Rapid Response

GRR Rapid Response

Shuffle

Shuffle

Stronghold

Stronghold

Shapeshifter

Shapeshifter

Ripple

Ripple

InvalidSign

InvalidSign

Datadog

Datadog

MozDef

MozDef