GDPatrol Logo

GDPatrol

0
Free
Updated 11 March 2025
Security Operations
Aws
Aws Config
Aws Security
Cloudwatch
Lambda
Visit Website

A Serverless Security Orchestration Automation and Response (SOAR) Framework for AWS GuardDuty. The GDPatrol Lambda function receives the GuardDuty findings through the CloudWatch Event Rule and executes the appropriate actions to mitigate the threats according to their types and severity. Supported actions include blacklist_ip, whitelist_ip, block_domain, quarantine_instance, snapshot_instance, disable_account, disable_ec2_access, enable_ec2_access, disable_sg_access, enable_sg_access, and asg_detach_instance. The actions to be executed are configured in the config.json file.

FEATURES

EXPLORE BY TAGS

Aws

Aws Config

Aws Security

Cloudwatch

Lambda

SIMILAR TOOLS

Dropzone AI Logo
Dropzone AI

Dropzone AI is an autonomous AI agent for SOCs that performs end-to-end investigations of security alerts, integrating with existing cybersecurity tools and data sources.

Commercial
Security Operations
CyberCPR Logo
CyberCPR

Incident response and case management solution for efficient incident response and management.

Free
Security Operations
SOARCA Logo
SOARCA

An open-source SOAR tool for automating threat and incident response workflows using CACAO security playbooks.

Free
Security Operations
Workflow Templates Repository Logo
Workflow Templates Repository

Repository of templates for Ayehu's workflows with the ability to design, execute, and automate IT and business processes.

Free
Security Operations
CORTEX XSOAR Logo
CORTEX XSOAR

Cortex XSOAR is a comprehensive SOAR platform that automates and standardizes security processes for faster response times and increased team productivity.

Commercial
Security Operations
Detecting Lateral Movement through Tracking Event Logs (Version 2) Logo
Detecting Lateral Movement through Tracking Event Logs (Version 2)

A report on detecting lateral movement through tracking event logs, updated to include analysis of various tools and commands used by attackers.

Free
Security Operations
Aurora Incident Response Logo
Aurora Incident Response

Incident Response Documentation tool for tracking findings and tasks.

Free
Security Operations
WALKOFF Logo
WALKOFF

WALKOFF is an automation framework for integrating capabilities and devices to streamline tasks.

Free
Security Operations
Cydarm Logo
Cydarm

A case management platform for Security Operations Centers that enables collaborative incident response, workflow automation, and compliance reporting throughout the cybersecurity incident response lifecycle.

Commercial
Security Operations

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy