👩🏻‍🚒

Security Incident Management

Getting started with well-know standards, frameworks and best practices

🇨🇵 ANSSI

🇬🇧 CREST

🇪🇺 ETSI

Risk Assessment

Breach Scenarios & Response

This account tweets fictional or headline inspired breach scenarios.

Reporting on threats and incidents

Incident Response Management Tooling

🛠️
DFIR Tooling

🎫
Aurora Incident Response
reportingsirp
🎫
Cortex XSOAR (Demisto )
🎫
CyberCPR
🎫
Cyphon
🎫
DFIRTrack
reportingsirp
⚙️
Falcon Crowdstrike Orchestrator
soarorchestratorwindows
🎫
Fast Incident Response (FIR)
⚙️
MozDef
all-in-onesiem
🎫
Request Tracker for Incident Response (RTIR)
Security Onion
all-in-oneanalyticslinux distribution
⚙️
Skadi
all-in-onewindowslinuxosx
🔍
The Sleuth Kit
artifact collectionall-in-onefile analysis
🐝
TheHive Project
🔍
X-Way Forensics
all-in-onedisk image creationacquisitionmemory analysisfile analysistimeline analysis
🔍
Zentral
artifact collectionartifact analysislinuxosxall-in-one