InvalidSign
The InvalidSign tool aims to bypass endpoint solutions that block known 'malicious' signed applications by obtaining a valid signed file with a different hash, as demonstrated through the analysis of cmd.exe and the generation of test files.
FEATURES
ALTERNATIVES
A web collaborative platform for incident responders to share technical details during investigations, shipped in Docker containers for easy installation and upgrades.
Scalable, cost-effective application recovery to AWS.
A mature SIEM environment is critical for successful SOAR implementation.
Anomali is an AI-Powered Security Operations Platform that delivers speed, scale, and performance at a reduced cost, combining ETL, SIEM, XDR, SOAR, and TIP to detect, investigate, respond, and remediate threats.
Incident response platform for automating alert handling and incident response procedures.
A robust and flexible hunt and incident response tool for investigating AzureAD, Azure, and M365 environments.
A public incident response process documentation used at PagerDuty
A multi-platform open source tool for triaging suspect systems and hunting for Indicators of Compromise (IOCs) across thousands of endpoints.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.