These workflows are meant for Shuffle and are automatically searchable from within Shuffle 0.9.0 onwards. They cover common automation use-cases and can be imported and exported within Shuffle. While not always production-ready, they provide a starting point for customization. Workflows are structured into three categories: Prepare, Response, and Testing, with the goal of fitting into one or multiple long-term categories such as Support, Discord, Twitter, Email, Open issue, or Shuffler.io. For more information, visit related repositories: Shuffle - https://github.com/frikky/shuffle, Apps.
FEATURES
ALTERNATIVES
A set of scripts for collecting forensic data from Windows and Unix systems respecting the order of volatility.
Dropzone AI is an autonomous AI agent for SOCs that performs end-to-end investigations of security alerts, integrating with existing cybersecurity tools and data sources.
A Security Orchestration, Automation and Response (SOAR) platform for incident response and threat hunting.
Open-source security automation platform for automating security alerts and building AI-assisted workflows.
A collaborative and open-source incident response platform for sharing observables among analysts.
A web collaborative platform for incident responders to share technical details during investigations, shipped in Docker containers for easy installation and upgrades.
A DFIR console integrating various cybersecurity tools and frameworks for efficient incident response.
A proof of concept for using the SSM Agent in Fargate for incident response
PINNED

InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.