InvestigationPlaybookSpec
Investigation playbook spec
Provides a specification for structuring investigation playbooks in Markdown format to facilitate reuse and management.
InvestigationPlaybookSpec
72 stars
17 watching
16 forks
last commit: about 7 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
| foundstone/expertinvestigationguides | Structured investigation guides and playbooks for documenting and managing threat hunting and incident response processes. | 50 |
 aws-samples/aws-incident-response-playbooks | A collection of customizable templates for responding to common AWS security incidents | 926 |
 niklongstone/regular-expression-cheat-sheet | A comprehensive resource providing regular expression patterns and explanations for common use cases. | 290 |
 phantomcyber/playbooks | Community-developed playbooks and custom functions for Splunk SOAR threat hunting and incident response | 472 |
 guardsight/gsvsoc_cirt-playbook-battle-cards | A collection of customizable recipes for responding to cyber threats and attacks | 360 |
 wikimedia/restbase-mod-table-spec | Defines and tests table storage specifications for a caching and proxy API | 3 |
 teamdfir/sift | A suite of tools and images for building and managing digital forensics environments on AWS | 491 |
 demisto/cops | Standardized framework for creating and sharing incident response processes in a shared language | 150 |
 betrybe/playbook-go | A guide to best practices and design patterns in the Go programming language | 310 |
 cdefid/thehiveirplaybook | A collection of incident response case templates for TheHive | 12 |
 threatconnect-inc/threatconnect-playbooks | Provides tools and frameworks for creating automation and orchestration capabilities within ThreatConnect | 69 |
 cryptogenic/exploit-writeups | A collection of technical writeups on kernel exploits and webkit vulnerabilities for various platforms | 749 |
 corkami/pocs | Research and experimentation with potential vulnerabilities in data hashing algorithms. | 1,475 |
 swyxio/ts-spec | A collection of official and unofficial specification documents for the TypeScript programming language. | 1 |
 drdroidlab/playbooks | An automation platform for investigating production issues with automated playbooks and observability integrations. | 396 |