Security Operations
Tols and platforms for managing and optimizing security operations centers (SOCs).
Explore 108 curated tools and resources
RELATED TASKS
LATEST ADDITIONS
Open source application to instantly remediate common security issues through the use of AWS Config.
A comprehensive auditd configuration for Linux systems following best practices.
DFIRTrack is an open source web application focused on incident response for handling major incidents with many affected systems, tracking system status, tasks, and artifacts.
CrowdStrike Falcon Orchestrator is a Windows-based application for workflow automation and security response.
Open-source security automation platform for automating security alerts and building AI-assisted workflows.
CimSweep is a suite of CIM/WMI-based tools for incident response and hunting operations on Windows systems without the need to deploy an agent.
Scripts to quickly fix security and compliance issues
Repository of playbooks, scripts, and templates for automating and orchestrating Security Operations.
Dispatch helps manage security incidents by integrating with existing tools and automating incident response tasks.
A System for Abuse- and Incident Handling with log file analysis capabilities.
A collaborative and open-source incident response platform for sharing observables among analysts.
Python command line utility for incident response in AWS
Companion repository for deploying osquery in a production environment with tailored query packs.
Enhances Windows OS security through system modifications and settings adjustments.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security