This is a public version of the Incident Response process used at PagerDuty. It is also used to prepare new employees for on-call responsibilities, and provides information not only on preparing for an incident, but also what to do during and after. Development is done using MkDocs to create a static site from this repository. Native development: Install MkDocs, PyMdown Extensions, and Pygments. Docker development: Use Docker to run the site. The site will automatically update as you edit the code. You can view the website in your browser at http://127.0.0.1:8000.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A compilation of suggested tools for each component in a detection and response pipeline, with real-world examples, to design effective threat detection and response pipelines.
Fast Intercept is a security automation platform that empowers users to maximize their existing security products and automate routine tasks.
Open-source security automation platform for automating security alerts and building AI-assisted workflows.
RedELK is a SIEM tool designed for red teams to monitor and receive alerts about blue team detection activities during penetration testing engagements.
StackStorm is an open-source automation platform that connects and automates DevOps workflows and integrates with existing infrastructure.
Cortex XSOAR is a comprehensive SOAR platform that automates and standardizes security processes for faster response times and increased team productivity.
JIMI is a flow-based orchestration automation platform that combines low-code and no-code capabilities for multi-team collaboration across IT, security, and development operations.
Shuffle is a platform for automating security workflows with confidence, offering templates, collaboration tools, and a large app library.
Request Tracker for Incident Response (RTIR) is a tool for incident response teams to manage incident reports, correlate data, and facilitate communication.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.