Megatron

0 (0)

Megatron is a tool implemented by CERT-SE for abuse- and incident handling, capable of collecting and analyzing log files with bad machines from sources like Shadowserver. It offers features such as flexible parsing, organization matching, database storage, filtering, data decoration, and various types of lookups.

Security Operations

Free

incident-response log-analysis incident-handling log-parsing

ALTERNATIVES

SOAR

0 (0)

A Security Orchestration, Automation and Response (SOAR) platform for incident response and threat hunting.

Security Operations

Free

automation threat-intelligence incident-response workflow-automation analytics threat-hunting security-orchestration

Kansa

0 (0)

A modular incident response framework in Powershell that uses Powershell Remoting to collect data for incident response and breach hunts.

Security Operations

Free

powershell incident-response

Enterprise Detection & Response: A Simple Hunting Maturity Model

0 (0)

A simple maturity model for enterprise detection and response

Security Operations

Free

cybersecurity hunting incident-response security-operations

Crowdstrike Charlotte AI

0 (0)

CrowdStrike Charlotte AI is a conversational AI assistant that accelerates security operations by automating tasks and providing faster intelligence through generative AI capabilities.

Security Operations

Commercial

automation security-operations workflow-automation integration ai machine-learning

CIRTKit

0 (0)

A DFIR console integrating various cybersecurity tools and frameworks for efficient incident response.

Security Operations

Free

automation dfir digital-forensics javascript memory-analysis incident-response volatility packet-analysis deobfuscation scripting

Datadog

0 (0)

Datadog offers a comprehensive suite of cybersecurity tools for various aspects of application and infrastructure monitoring.

Security Operations

Free

cloud infrastructure monitoring security serverless log-management