ssm-acquire Logo

ssm-acquire

A Python module for orchestrating remote forensic data acquisition and analysis from Linux instances using Amazon SSM.

58
Security Operations Open Source
Cloud ForensicsSsmS3Ioc+2
Visit website
Compare
Compare
0
Explore Security Operations3 AlternativesCompareStacksMarket MapExplore All Tools
MCPThe entire cybersecurity market, one prompt awayTry MCP Access

ssm-acquire Description

ssm-acquire is a Python module that orchestrates content acquisitions and analysis through Amazon Systems Manager (SSM). The tool enables remote forensic data collection from Linux instances running the Amazon SSM Agent. Key capabilities include: - Memory acquisition from Linux instances directly to S3 buckets using SSM - Instance interrogation for top-10 indicators of compromise (IOCs) using OSQuery - Memory sample analysis on target machines using Docker containers - Rekall profile creation using instances as build targets The module leverages Amazon's SSM infrastructure to perform remote forensic operations without requiring direct access to target systems. It supports automated workflows for memory dumping, IOC detection, and forensic analysis in cloud environments. ssm-acquire is distributed as free software under the MPL 2.0 License and is currently in pre-release status. Documentation is available at https://ssm-acquire.readthedocs.io.

ssm-acquire FAQ

Common questions about ssm-acquire including features, pricing, alternatives, and user reviews.

ssm-acquire is A Python module for orchestrating remote forensic data acquisition and analysis from Linux instances using Amazon SSM.. It is a Security Operations solution designed to help security teams with Cloud Forensics, SSM, S3.

Have more questions? Browse our categories or search for specific tools.

FEATURED

Push Security Logo
Push Security
Zero Trust
CybersecRadars Logo
CybersecRadars
Threat Management
Hudson Rock Logo
Hudson Rock
Threat Management
Get Featured

ALTERNATIVES

Diffy (DEPRECATED) Logo
Diffy (DEPRECATED)

A deprecated digital forensics tool by Netflix that helped investigators scope compromises across AWS cloud instances by identifying behavioral differences and outliers during security incidents.

0
BinaryAlert Logo
BinaryAlert

BinaryAlert is an open-source serverless AWS pipeline that automatically scans files uploaded to S3 buckets with YARA rules and generates immediate alerts when malware is detected.

0
Cloud Forensics Utils Logo
Cloud Forensics Utils

A forensics toolkit for collecting digital evidence from Google Cloud Platform, Microsoft Azure, and Amazon Web Services during incident response investigations.

0

POPULAR

RoboShadow Logo
RoboShadow
Vulnerability Assessment
OSINTLeak Real-time OSINT Leak Intelligence Logo
OSINTLeak Real-time OSINT Leak Intelligence
Threat Intelligence Platforms
Cybersec Feeds Logo
Cybersec Feeds
Threat Intelligence Platforms
TestSavant AI Security Assurance Platform Logo
TestSavant AI Security Assurance Platform
AI Red Teaming
Fabric Platform by BlackStork Logo
Fabric Platform by BlackStork
Security Information and Event Management
View Popular Tools →

TRENDING CATEGORIES

Digital Forensics and Incident Response
Digital Forensics and Incident Response (DFIR) tools for digital forensic analysis, evidence collection, malware analysis, and cyber incident investigation.
524
Threat Intelligence Platforms
TIP for collecting, analyzing, and sharing cyber threat data, indicators of compromise (IOCs), and threat feeds.
413
Managed Detection and Response
Managed Detection and Response (MDR) services that provide 24/7 threat monitoring, detection, and response capabilities managed by security experts.
299
Multi-Factor Authentication and Single Sign-On
Multi-factor authentication (MFA) and single sign-on (SSO) solutions for secure user authentication and access control.
292
Identity Governance and Administration
Identity Governance and Administration (IGA) platforms for identity lifecycle management, access governance, role management, and compliance reporting.
289
View All Categories →

Stay Updated with Mandos Brief

Get strategic cybersecurity insights in your inbox