Catalyst SOAR
Catalyst is a SOAR (Security Orchestration, Automation and Response) system that helps to automate alert handling and incident response processes. It adapts to your processes and workflows, and is open source, allowing for free use and contribution to the project. With Catalyst, you can automate alerts and incidents, focusing on important tasks or relaxing a little. Features include flexible ticket types, conditional custom fields, statuses, and playbooks that fit your needs.
FEATURES
SIMILAR TOOLS
A mature SIEM environment is critical for successful SOAR implementation.
Incident response and digital forensics tool for transforming data sources and logs into graphs.
A case management platform for Security Operations Centers that enables collaborative incident response, workflow automation, and compliance reporting throughout the cybersecurity incident response lifecycle.
A defense-in-depth security automation and monitoring framework utilizing threat intelligence, machine learning, and serverless technologies.
An investigative analytics platform that uses machine learning to fuse and analyze data from multiple sources, enabling security organizations to extract insights and identify patterns for threat prevention and complex investigations.
A standardized framework for describing and classifying cybersecurity incidents
Repository of templates for Ayehu's workflows with the ability to design, execute, and automate IT and business processes.
Tool to disable vulnerable features in Windows and popular applications for enhanced security.
Migrated Splunk SOAR Connectors to new GitHub organization for better organization and management.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.