IRIS-SOAR
IRIS-SOAR is a modular Security Orchestration, Automation, and Response (SOAR) platform implemented in Python. The tool provides automated playbook execution capabilities for security incident response workflows. It integrates with DFIR-IRIS to enhance digital forensics and incident response operations through automation. The platform supports modular architecture allowing for customizable security orchestration workflows. IRIS-SOAR enables security teams to automate repetitive tasks, coordinate response activities, and streamline incident handling processes. The Python-based implementation provides flexibility for custom integrations and workflow development.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Shuffle is a platform for automating security workflows with confidence, offering templates, collaboration tools, and a large app library.
A compilation of suggested tools for each component in a detection and response pipeline, with real-world examples, to design effective threat detection and response pipelines.
Request Tracker for Incident Response (RTIR) is a tool for incident response teams to manage incident reports, correlate data, and facilitate communication.
Catalyst is a SOAR system that automates alert handling and incident response processes, adapting to your workflows and being open source.
StackStorm is an open-source automation platform that connects and automates DevOps workflows and integrates with existing infrastructure.
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
Open-source security automation platform for automating security alerts and building AI-assisted workflows.
A repository of sample security playbooks with ARM templates for Microsoft Sentinel that enable automated security orchestration and response capabilities.
A community-driven repository and development framework for creating custom automation activities within the Ayehu NG IT orchestration platform.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.