redcanaryco / Redcanary Response Utils
Licence: mit
Tools to automate and/or expedite response.
Stars: ✭ 82
Programming Languages
python
139335 projects - #7 most used programming language
Labels
Projects that are alternatives of or similar to Redcanary Response Utils
Radio Hackbox
PoC tool to demonstrate vulnerabilities in wireless input devices
Stars: ✭ 74 (-9.76%)
Mutual labels: security-tools
Senv
Friends don't let friends leak secrets on their terminal window 🙈
Stars: ✭ 71 (-13.41%)
Mutual labels: security-tools
Viewfinderjs
📷 ViewFinder - NodeJS product to make the browser into a web app. WTF RBI. CBII. Remote browser isolation, embeddable browserview, secure chrome saas. Licenses, managed, self-hosted. Like S2, WebGap, Bromium, Authentic8, Menlo Security and Broadcom, but open source with free live demos available now! Also, integrated RBI/CDR with CDR from https://github.com/dosyago/p2%2e
Stars: ✭ 1,175 (+1332.93%)
Mutual labels: security-tools
Ioc Explorer
Explore Indicators of Compromise Automatically
Stars: ✭ 73 (-10.98%)
Mutual labels: security-tools
Sysmon Modular
A repository of sysmon configuration modules
Stars: ✭ 1,229 (+1398.78%)
Mutual labels: security-tools
Gscan
本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Checklist的自动全面化检测,根据检测结果自动数据聚合,进行黑客攻击路径溯源。
Stars: ✭ 1,177 (+1335.37%)
Mutual labels: security-tools
Securityprivacyreferencearchitecture
Open Repository for the Open Security and Privacy Reference Architecture
Stars: ✭ 73 (-10.98%)
Mutual labels: security-tools
Ursadb
Trigram database written in C++, suited for malware indexing
Stars: ✭ 72 (-12.2%)
Mutual labels: security-tools
Checklist Tools Website
🍿 The perfect Checklist Website for meticulous developers.
Stars: ✭ 73 (-10.98%)
Mutual labels: security-tools
Gitgraber
gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
Stars: ✭ 1,164 (+1319.51%)
Mutual labels: security-tools
Network Threats Taxonomy
Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies
Stars: ✭ 79 (-3.66%)
Mutual labels: security-tools
Intrigue Ident
Application and Service Fingerprinting
Stars: ✭ 70 (-14.63%)
Mutual labels: security-tools
Notruler
The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.
Stars: ✭ 72 (-12.2%)
Mutual labels: security-tools
Pentesting Cookbook
A set of recipes useful in pentesting and red teaming scenarios
Stars: ✭ 82 (+0%)
Mutual labels: security-tools
Content
Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats
Stars: ✭ 1,219 (+1386.59%)
Mutual labels: security-tools
Nrf24 Playset
Software tools for Nordic Semiconductor nRF24-based devices like wireless keyboards, mice, and presenters
Stars: ✭ 73 (-10.98%)
Mutual labels: security-tools
Tools to automate and/or expedite response.
Setup
git clone [email protected]:redcanaryco/redcanary-response-utils.git
mkvirtualenv redcanary-response-utils
python setup.py develop
./sensor-util.py
cblr-basic.py
Platforms: Carbon Black (Response)
Execute a basic response plan targeting a single endpoint. Performs the following actions:
- Isolate the endpoint.
- Kill associated processes.
- Ban offending binary file(s).
network-util.py
Platforms: Carbon Black (Response)
Enumerate network connections based on a wide variety of criteria. Includes support for:
- process- and connection-based whitelists
- filtering by host type (Workstation or Server)
- more
process-util.py
Platforms: Carbon Black (Response)
Enumerate processes. This is a performant alternative to timeline.py if you wish to quickly examine process start events only.
sensor-util.py
Platforms: Carbon Black (Response)
Enumerate sensors and output metadata, to include endpoint health.
timeline.py
Platforms: Carbon Black (Response)
Generate a timeline of activity associated with a user, endpoint, or other limiting criteria.
usb-util.py
Platforms: Carbon Black (Response)
Enumerate USB mass storage devices.
NOTE: Only supports enumeration of devices on Windows endpoints.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].