Incident Response Investigation System (IRIS)
A web collaborative platform for incident responders to share technical details during investigations, shipped in Docker containers for easy installation and upgrades.
Incident Response Investigation System (IRIS)
A web collaborative platform for incident responders to share technical details during investigations, shipped in Docker containers for easy installation and upgrades.
Incident Response Investigation System (IRIS) Description
IRIS is a web collaborative platform designed to assist incident responders in sharing technical details during investigations. It consists of two main parts: IrisWeb, the core web application for managing the interface and database, and IrisModules, extensions that allow third parties to process data (e.g., enrich IOCs with MISP and VT, upload EVTX into Splunk). IRIS can function without modules, but default ones are preinstalled, and additional modules can be configured in the UI under Manage > Modules. The system is shipped in Docker containers for easy installation and upgrades using Docker compose.
Incident Response Investigation System (IRIS) FAQ
Common questions about Incident Response Investigation System (IRIS) including features, pricing, alternatives, and user reviews.
Incident Response Investigation System (IRIS) is A web collaborative platform for incident responders to share technical details during investigations, shipped in Docker containers for easy installation and upgrades.. It is a Security Operations solution designed to help security teams with Evidence Collection, Memory Forensics.
