InvestigationPlaybookSpec
Investigation playbook spec
Provides a specification for structuring investigation playbooks in Markdown format to facilitate reuse and management.
InvestigationPlaybookSpec
72 stars
17 watching
16 forks
last commit: over 7 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
| foundstone/expertinvestigationguides | Structured investigation guides and playbooks for documenting and managing threat hunting and incident response processes. | 51 |
 aws-samples/aws-incident-response-playbooks | A collection of customizable templates for responding to common AWS security incidents | 935 |
 niklongstone/regular-expression-cheat-sheet | A comprehensive resource providing regular expression patterns and explanations for common use cases. | 289 |
 phantomcyber/playbooks | Community-developed playbooks and custom functions for Splunk SOAR threat hunting and incident response | 478 |
 guardsight/gsvsoc_cirt-playbook-battle-cards | A collection of customizable recipes for responding to cyber threats and attacks | 361 |
 wikimedia/restbase-mod-table-spec | Defines and tests table storage specifications for a caching and proxy API | 3 |
 teamdfir/sift | A suite of tools and images for building and managing digital forensics environments on AWS | 494 |
 demisto/cops | Standardized framework for creating and sharing incident response processes in a shared language | 151 |
 betrybe/playbook-go | A guide to best practices and design patterns in the Go programming language | 310 |
 cdefid/thehiveirplaybook | A collection of incident response case templates for TheHive | 13 |
 threatconnect-inc/threatconnect-playbooks | A community-driven repository of reusable automation and orchestration scripts for ThreatConnect's security platform. | 68 |
 cryptogenic/exploit-writeups | A collection of technical writeups on kernel exploits and webkit vulnerabilities for various platforms | 749 |
 corkami/pocs | Research and experimentation with potential vulnerabilities in data hashing algorithms. | 1,480 |
 swyxio/ts-spec | A collection of official and unofficial specification documents for the TypeScript programming language. | 1 |
 drdroidlab/playbooks | An automation platform for investigating production issues with automated playbooks and observability integrations. | 410 |