Cyber Triage Logo

Cyber Triage

0
Commercial
Visit Website

Cyber Triage is an automated Digital Forensics and Incident Response (DFIR) software that enables cybersecurity professionals to quickly investigate intrusions related to malware, ransomware, and account takeover. It provides a comprehensive solution for conducting rapid incident response, with features such as artifact scoring, advanced analytics, and a recommendation engine. Cyber Triage is designed to work in various scenarios, including on-premise servers, cloud, and laptops, and is trusted by global organizations committed to security. The software allows responders to quickly answer intrusion questions, such as "What did the attacker do?" and "How did they get in?". It provides a flexible deployment model, with the ability to collect data using an agentless collection tool, analyze artifacts, and respond to incidents. Cyber Triage is built by Sleuth Kit Labs, a spinout of BasisTech, and is designed to make digital forensics easier and more effective for first responders.

FEATURES

ALTERNATIVES

A defense-in-depth security automation and monitoring framework utilizing threat intelligence, machine learning, and serverless technologies.

A comprehensive auditd configuration for Linux systems following best practices.

A set of scripts for collecting forensic data from Windows and Unix systems respecting the order of volatility.

StackStorm is an open-source automation platform that connects and automates DevOps workflows and integrates with existing infrastructure.

Darktrace is a cyber security solution that uses AI to detect and prevent cyber attacks in real-time.

Incident Response Documentation tool for tracking findings and tasks.

A collection of incident response methodologies for various security incidents, providing easy-to-use operational best practices.

PowerGRR is a PowerShell module for the GRR API, allowing automation and scripting for incident response and remote live forensics.