A collaborative and open-source incident response platform for sharing observables among analysts.
Cyber Triage is an automated Digital Forensics and Incident Response (DFIR) software that enables cybersecurity professionals to quickly investigate intrusions related to malware, ransomware, and account takeover. It provides a comprehensive solution for conducting rapid incident response, with features such as artifact scoring, advanced analytics, and a recommendation engine. Cyber Triage is designed to work in various scenarios, including on-premise servers, cloud, and laptops, and is trusted by global organizations committed to security. The software allows responders to quickly answer intrusion questions, such as "What did the attacker do?" and "How did they get in?". It provides a flexible deployment model, with the ability to collect data using an agentless collection tool, analyze artifacts, and respond to incidents. Cyber Triage is built by Sleuth Kit Labs, a spinout of BasisTech, and is designed to make digital forensics easier and more effective for first responders.
A collaborative and open-source incident response platform for sharing observables among analysts.
A DevSecOps command line asset inventory tool
A panic button app for triggering a ripple effect across apps responding to panic events
Tool to bypass endpoint solutions blocking known 'malicious' signed applications by obtaining valid signed files with different hashes.
A compilation of suggested tools for each component in a detection and response pipeline, with real-world examples, to design effective threat detection and response pipelines.
A robust and flexible hunt and incident response tool for investigating AzureAD, Azure, and M365 environments.