Shuffle Automation
An automation platform with community support and documentation for easy development.
The idea of this auditd configuration is to provide a basic configuration that works out-of-the-box on all major Linux distributions, fits most use cases, produces a reasonable amount of log data, covers security-relevant activity, and is easy to read with different sections and many comments. Sources: Gov.uk auditd rules, alphagov/puppet-auditd#1, CentOS 7 hardening, Linux audit repo, Auditd high-performance Linux auditing. Further rules for PCI DSS compliance and NISPOM compliance are available.
An automation platform with community support and documentation for easy development.
Web-based tool for incident response with easy local installation using Docker.
Malware allows attackers to execute Windows commands from a remote environment
A Sysmon configuration repository for customizing Microsoft Sysinternals Sysmon configurations with modular setup.
CrowdStrike Charlotte AI is a conversational AI assistant that accelerates security operations by automating tasks and providing faster intelligence through generative AI capabilities.
A DFIR console integrating various cybersecurity tools and frameworks for efficient incident response.