A Live Response collection script for Incident Response that automates the collection of artifacts from various Unix-like operating systems.
AbuseIO is an open-source abuse management toolkit that allows users to receive, process, correlate abuse reports, and send notifications with specific information regarding abuse cases on their network. It aims to automate and improve the abuse handling process by consolidating efforts from various companies and individuals. It is 100% free and open source, works with both IPv4 and IPv6 addresses, automatically parses events into abuse tickets, integrates with existing IPAM systems, allows for automatic notifications per case or customer with configurable intervals, enables abuse desks and end users to reply, close, or add notes to cases, links end users to a self-help portal, and supports a wide range of feeds including ShadowServer, SpamCop, Netcraft, Google Safe Browsing, IP Echelon, C-SIRT, Project Honey Pot, Abuse-IX, and more.
A Live Response collection script for Incident Response that automates the collection of artifacts from various Unix-like operating systems.
Stronghold is the easiest way to securely configure your Mac.
CrowdStrike Falcon Orchestrator is a Windows-based application for workflow automation and security response.
A robust and flexible hunt and incident response tool for investigating AzureAD, Azure, and M365 environments.
Tool to bypass endpoint solutions blocking known 'malicious' signed applications by obtaining valid signed files with different hashes.
A Sysmon configuration repository for customizing Microsoft Sysinternals Sysmon configurations with modular setup.