ExpertInvestigationGuides
Investigation templates
Structured investigation guides and playbooks for documenting and managing threat hunting and incident response processes.
Expert Investigation Guides
50 stars
7 watching
6 forks
last commit: over 3 years ago
Linked from 1 awesome list
0x4d31/awesome-threat-detectionRelated projects:
| Repository | Description | Stars |
|---|---|---|
| foundstone/investigationplaybookspec | Provides a specification for structuring investigation playbooks in Markdown format to facilitate reuse and management. | 72 |
 aws-samples/aws-incident-response-playbooks | A collection of customizable templates for responding to common AWS security incidents | 926 |
 sbousseaden/slides | Collection of resources and concepts for threat hunting and detection engineering. | 372 |
 cdefid/thehiveirplaybook | A collection of incident response case templates for TheHive | 12 |
 teamdfir/sift | A suite of tools and images for building and managing digital forensics environments on AWS | 491 |
 certsocietegenerale/irm | Operational guidelines and best practices for handling various types of security incidents | 978 |
 demisto/cops | Standardized framework for creating and sharing incident response processes in a shared language | 150 |
 zdhenard42/soc-multitool | A browser extension designed to streamline investigations by providing quick access to various data and services related to cybersecurity and threat analysis. | 338 |
 a3sal0n/cyberthreathunting | A collection of tools and resources for threat hunters to identify and respond to cyber threats. | 855 |
 ghostinthewires/post-mortems-template | A template for documenting and analyzing software incidents to improve future development processes | 31 |
 thenerdinthehighcastle/obsidian-osint-templates | A collection of templates for using the Obsidian note-taking tool in OSINT investigations | 5 |
 inquest/threatingestor | Extracts and aggregates threat intelligence from various sources | 831 |
 gossithedog/threathunting | Tools and rules for detecting malicious domain calls in endpoint malware | 568 |
 niklongstone/regular-expression-cheat-sheet | A comprehensive resource providing regular expression patterns and explanations for common use cases. | 290 |
 foxminchan/lawknowledge | A legal knowledge search and Q&A application using various technologies such as NLP, microservices, and semantic search. | 104 |