PowerGRR Logo

PowerGRR

0
Free
Visit Website

PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting. PowerGRR allows working with flows, hunts, labels, artifacts, approvals and the search feature. It enables you to easily document your work in text form which is then directly reusable by others. Some of the use cases where PowerGRR could speed up the work: * Start a flow on one or multiple clients and get flow results as PowerShell object for easier filtering. * Download collected files directly from command line. * Create and start a new hunt and get the hunt info or results as PowerShell object. * Create and manage labels and artifacts. * Approve or reject approvals. * Search for specific data. PowerGRR also enables you to easily work with computer names instead of the GRR internal client id. This makes handling and working with other tools more easy because often you just have the computer names.

FEATURES

ALTERNATIVES

Fast Intercept is a security automation platform that empowers users to maximize their existing security products and automate routine tasks.

A GraphQL security testing tool

WALKOFF is an automation framework for integrating capabilities and devices to streamline tasks.

DFIRTrack is an open source web application focused on incident response for handling major incidents with many affected systems, tracking system status, tasks, and artifacts.

A collaborative and open-source incident response platform for sharing observables among analysts.

A security operations platform that provides automated threat detection, access control, and protection against various online attacks through Cloudflare integration.

A public incident response process documentation used at PagerDuty

A compilation of suggested tools for each component in a detection and response pipeline, with real-world examples, to design effective threat detection and response pipelines.

PINNED