GRR Rapid Response is an incident response framework focused on remote live forensics. GRR is a python client (agent) that is installed on target systems, and python server infrastructure that can manage and talk to clients. Documentation: Please visit our documentation website if you want to know more about GRR. Contact Us: GitHub issues - github.com/google/grr/issues, GRR Users mailing list, Follow us on Twitter for announcements of GRR user meetups. We use a Gitter chat room during meetups. Screenshots
FEATURES
ALTERNATIVES
A proof of concept for using the SSM Agent in Fargate for incident response
A DFIR Playbook Spec based on YAML for collaborative incident response processes.
A data curation platform that automates security data collection, transformation and routing while reducing data volume and infrastructure costs.
A standardized framework for describing and classifying cybersecurity incidents
Receive important notifications and updates related to North American electric grid security.
A modular incident response framework in Powershell that uses Powershell Remoting to collect data for incident response and breach hunts.
PINNED

InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.