COPS - Collaborative Open Playbook Standard Logo

COPS - Collaborative Open Playbook Standard

0
Free
Visit Website

This repository contains schema definitions for a DFIR (Digital Forensics Incident Response) Playbook based on YAML, providing written guidance for identifying, containing, eradicating, and recovering from cyber security incidents. The spec promises an open, semi/fully automated, and visible incident response process, allowing analysts to create, share, and contribute in the same language.

FEATURES

ALTERNATIVES

Datadog offers a comprehensive suite of cybersecurity tools for various aspects of application and infrastructure monitoring.

Workflows for Shuffle automation tool with structured categories and customization options.

Incident response and case management solution for efficient incident response and management.

A set of scripts for collecting forensic data from Windows and Unix systems respecting the order of volatility.

Malware allows attackers to execute Windows commands from a remote environment

Dispatch helps manage security incidents by integrating with existing tools and automating incident response tasks.

Dropzone AI is an autonomous AI agent for SOCs that performs end-to-end investigations of security alerts, integrating with existing cybersecurity tools and data sources.

Open-source security automation platform for automating security alerts and building AI-assisted workflows.

PINNED