A collection of useful Resources for Cyber Security Operations practitioners, or those building/evolving a SOC.
Slack DFIR channel
Google Rapid Response (GRR) Framework
CIRTkit
Computer Aided Investigative Environment (CAINE)
Cyber Triage
Demisto
Digital Forensics Framework
Doorman
Falcon Orchestrator
Fast Incident Response (FIR)
Fully Integrated Defense Operation (FIDO)
TheHive
Incident Handling Automation Protocol (IHAP)
IRMA
Kansa
Mandiant RedLine
nightHawk
Open Computer Forensics Architecture
Request Tracker (RTIR)
ROCKNSM Response Ops Collection Kit
Sandia Cyber Omni Tracker (SCOT)
Zentral
CRITS
Fileintel
Gephi
Hostintel
Hindsight
Highlighter
Malstrom
Maltego
Timesketch
Threat Note