MozDef Logo

MozDef

0
Free
Visit Website

Mozilla Enterprise Defense Platform (MozDef) is a project aimed at automating the security incident handling process and facilitating real-time activities of incident handlers. It provides a platform for defenders to rapidly discover and respond to security incidents, automating interfaces to other systems.

FEATURES

ALTERNATIVES

Request Tracker for Incident Response (RTIR) is a tool for incident response teams to manage incident reports, correlate data, and facilitate communication.

Anomali is an AI-Powered Security Operations Platform that delivers speed, scale, and performance at a reduced cost, combining ETL, SIEM, XDR, SOAR, and TIP to detect, investigate, respond, and remediate threats.

CimSweep is a suite of CIM/WMI-based tools for incident response and hunting operations on Windows systems without the need to deploy an agent.

Open-source security automation platform for automating security alerts and building AI-assisted workflows.

A data curation platform that automates security data collection, transformation and routing while reducing data volume and infrastructure costs.

A Sysmon configuration file template with detailed explanations and tutorial-like features.

Python command line utility for incident response in AWS

A defense-in-depth security automation and monitoring framework utilizing threat intelligence, machine learning, and serverless technologies.