Personal blog
-
Updated
May 29, 2024 - HTML
Personal blog
This Docker Compose configuration sets up an Elastic Stack environment, including Elasticsearch, Kibana, Logstash, Metricbeat, Filebeat, and Suricata, using the specified versions.
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Create, share, and run runbooks from your terminal.
🏴☠️ BST is an ever-evolving collection of 🛠 tools to help in security and administration day to day tasks 😉
Cloud-ops automation runbooks that are ready to use. Build your own automations using the hundreds of drag and drop actions included in the repository. Built on Jupyter Notebooks, our automation platform jumpstarts your SRE RunBook creation. 😎 published by the unSkript community.
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
🤖 Cybersecurity Automation & Investigation Assistant
Plugins for Wazuh Dashboard
OneUptime is the complete open-source observability platform.
Customizable SIEM and XDR powered by Real-Time correlation and Threat Intelligence
On demand query API for https://github.com/davidonzo/Threat-Intel project.
AssemblyLine 4: File triage and malware analysis
Forensic Artifacts Collecting Toolset
Collaborative Incident Response platform
IntelOwl: manage your Threat Intelligence at scale
Triage scripts for Intel-based Macs
This Python script uses the VirusTotal API to check the reputation of IP addresses and domains, fetching detailed security, location, and network information. It ensures necessary output directories are created.
Add a description, image, and links to the incident-response topic page so that developers can more easily learn about it.
To associate your repository with the incident-response topic, visit your repo's landing page and select "manage topics."