TheHive
Incident manager
A scalable platform for investigating and managing security incidents, providing features for collaboration, task assignment, and case management.
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
3k stars
171 watching
626 forks
Language: Scala
last commit: about 2 years ago
Linked from 1 awesome list
agplv3analyzerapicortexdfirdigital-forensicsfreeincident-managementincident-responseincident-response-toolinginvestigationsiocsmispopen-sourceorchestrationplatformrestscalasecurity-incidentsthehive
correlatedsecurity/awesome-soarRelated projects:
| Repository | Description | Stars |
|---|---|---|
| thehive-project/cortex | A tool that enables scalable analysis of observables and automates incident response operations | 1,352 |
| thehive-project/cortex-analyzers | Develops and stores Cortex analyzers & responders for incident response and threat intelligence. | 437 |
 misp/misp | A platform for collecting, storing, and sharing structured information about cyber security incidents and threats. | 5,435 |
| thehive-project/thehive4py | A Python library providing an API client for TheHive digital forensics platform | 217 |
 alexandreborges/malwoverview | A tool for analyzing malware and threat intelligence data from multiple sources | 3,012 |
 chrisandoryan/nethive-project | An SIEM system that uses machine learning and CVSS measurements to detect security threats. | 3 |
 opennhp/opennhp | A Zero Trust protocol that leverages resource-hiding and encryption to safeguard servers and data from attackers | 13,520 |
 crowdsecurity/crowdsec | A community-driven security solution that detects and prevents malicious IP addresses from accessing systems by analyzing logs and sharing threat intelligence across users. | 9,217 |
 thalesgroup-cert/watcher | Automated platform for discovering and analyzing cybersecurity threats targeting an organization | 869 |
 robusta-dev/holmesgpt | Automates investigation of alerts from monitoring tools like Prometheus, reducing mean-time-torespond and improving incident management. | 566 |
 vespperhq/vespper | An AI-powered on-call engineer tool that automatically investigates incidents and provides contextual insights | 305 |
 security-onion-solutions/securityonion | An integrated security monitoring and threat hunting platform that collects, analyzes, and responds to network traffic data | 3,347 |
 sitewhere/sitewhere | A platform for managing and integrating data from Internet of Things devices at scale | 1,020 |
 davidonzo/threat-intel | Develops and shares cyber threat intelligence information in various formats for SOC/CSIRT/CERT use. | 149 |
 cisagov/untitledgoosetool | A tool for investigating and responding to security incidents in cloud-based Microsoft environments. | 917 |