IRIS-SOAR is a modular Security Orchestration, Automation, and Response (SOAR) platform implemented in Python. The tool provides automated playbook execution capabilities for security incident response workflows. It integrates with DFIR-IRIS to enhance digital forensics and incident response operations through automation. The platform supports modular architecture allowing for customizable security orchestration workflows. IRIS-SOAR enables security teams to automate repetitive tasks, coordinate response activities, and streamline incident handling processes. The Python-based implementation provides flexibility for custom integrations and workflow development.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Shuffle is a platform for automating security workflows with confidence, offering templates, collaboration tools, and a large app library.
A compilation of suggested tools for each component in a detection and response pipeline, with real-world examples, to design effective threat detection and response pipelines.
Request Tracker for Incident Response (RTIR) is a tool for incident response teams to manage incident reports, correlate data, and facilitate communication.
Catalyst is a SOAR system that automates alert handling and incident response processes, adapting to your workflows and being open source.
StackStorm is an open-source automation platform that connects and automates DevOps workflows and integrates with existing infrastructure.
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
Open-source security automation platform for automating security alerts and building AI-assisted workflows.
A repository of sample security playbooks with ARM templates for Microsoft Sentinel that enable automated security orchestration and response capabilities.
A community-driven repository and development framework for creating custom automation activities within the Ayehu NG IT orchestration platform.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.