Cyber Triage Logo

Cyber Triage

0
Commercial
Visit Website

Cyber Triage is an automated Digital Forensics and Incident Response (DFIR) software that enables cybersecurity professionals to quickly investigate intrusions related to malware, ransomware, and account takeover. It provides a comprehensive solution for conducting rapid incident response, with features such as artifact scoring, advanced analytics, and a recommendation engine. Cyber Triage is designed to work in various scenarios, including on-premise servers, cloud, and laptops, and is trusted by global organizations committed to security. The software allows responders to quickly answer intrusion questions, such as "What did the attacker do?" and "How did they get in?". It provides a flexible deployment model, with the ability to collect data using an agentless collection tool, analyze artifacts, and respond to incidents. Cyber Triage is built by Sleuth Kit Labs, a spinout of BasisTech, and is designed to make digital forensics easier and more effective for first responders.

FEATURES

ALTERNATIVES

A multi-platform open source tool for triaging suspect systems and hunting for Indicators of Compromise (IOCs) across thousands of endpoints.

A standardized framework for describing and classifying cybersecurity incidents

A robust and flexible hunt and incident response tool for investigating AzureAD, Azure, and M365 environments.

A public incident response process documentation used at PagerDuty

A set of scripts for collecting forensic data from Windows and Unix systems respecting the order of volatility.

Dispatch helps manage security incidents by integrating with existing tools and automating incident response tasks.

CrowdStrike Falcon Orchestrator is a Windows-based application for workflow automation and security response.

A Live Response collection script for Incident Response that automates the collection of artifacts from various Unix-like operating systems.