uac
Incident collector
Automates incident response data collection from various operating systems
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
824 stars
27 watching
128 forks
Language: Shell
last commit: about 1 month ago
Linked from 2 awesome lists
aixcollectorcomputer-forensicsdfiresxiforensicsfreebsdincident-responselinuxlive-responsemacosnetbsdnetscaleropenbsdscriptsecurityshellsolaristerminaltriage
meirwah/awesome-incident-response
cugu/awesome-forensicsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 op7ic/unix_collector | A script designed to automatically collect various system artifacts and data from Unix-like systems without the need for manual intervention or external dependencies. | 33 |
 withsecurelabs/linuxcatscale | Automates incident response collection and processing on Linux hosts. | 274 |
 ajmartel/irtriage | Automated incident response tool for collecting critical system information during forensic analysis of Windows systems. | 130 |
 abdulrhmanalfaifi/fennec | Tool for collecting artifacts from *nix systems during incident response | 195 |
 orlikoski/cylr | A tool that collects and preserves forensic artifacts from NTFS file systems without impacting the host system. | 652 |
 tap-ir/tapir | An incident response framework with multi-user support, providing plugins for file analysis and a REST API for data access | 45 |
 cisagov/untitledgoosetool | A tool for investigating and responding to security incidents in cloud-based Microsoft environments. | 917 |
 vespperhq/vespper | An AI-powered on-call engineer tool that automatically investigates incidents and provides contextual insights | 305 |
 atc-project/atc-react | A knowledge base of actionable Incident Response techniques | 615 |
 crowdstrike/automactc | Automated collection and analysis tool for macOS forensic artifacts | 534 |
 opentsdb/tcollector | A framework for collecting and storing data in an open-source distributed database system | 512 |
 jimtin/ircoreforensicframework | Automates incident response actions to gather and process forensic artefacts from remote systems | 22 |
 cyberdefenseinstitute/cdir | A tool designed to collect data from Windows systems during an incident response | 154 |
 omenscan/achoir | A scripting framework to simplify the process of gathering forensic artifacts from Windows devices. | 184 |
 aws-samples/aws-incident-response-playbooks | A collection of customizable templates for responding to common AWS security incidents | 935 |