ssm-acquire
A python module for orchestrating content acquisitions and analysis via Amazon SSM. Features include acquiring memory from a Linux instance to an S3 bucket using SSM, interrogating an instance for top-10 IOCs using OSQuery, analyzing a memory sample on a machine using Docker, and creating a rekall profile using an instance as a build target running the Amazon SSM Agent. This is a pre-release and is free software under the MPL 2.0 License. For more information, refer to the documentation at https://ssm-acquire.readthedocs.io.
FEATURES
ALTERNATIVES
A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys.
Belkasoft offers cybersecurity solutions, training, and tools for businesses, law enforcement, and academia.
Toolkit for post-mortem analysis of Docker runtime environments using forensic HDD copies.
wxHexEditor is a free hex editor / disk editor with various data manipulation operations and visualization functionalities.
A toolkit for forensic analysis of network appliances with YARA decoding options and frame extraction capabilities.
An anti-forensic kill-switch tool for USB ports to shut down the computer immediately in case of unauthorized access.
A suite of console tools for working with timestamps in Windows with 100-nanosecond precision.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.