Merge pull request #146 from Karneades/patch-2

Add PowerSponse as containment tool
2024-06-28 15:22:07 +00:00 · 2020-04-06 12:57:32 +03:00 · 2020-04-06 12:57:32 +03:00 · 03bb3eacbb
commit 03bb3eacbb
parent a5434d71e4 3a838c67ee
1 changed files with 1 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -176,6 +176,7 @@ Digital Forensics and Incident Response (DFIR) teams are groups of people in an
 * [Hostintel](https://github.com/keithjjones/hostintel) - Pull intelligence per host.
 * [imagemounter](https://github.com/ralphje/imagemounter) - Command line utility and Python package to ease the (un)mounting of forensic disk images.
 * [Kansa](https://github.com/davehull/Kansa/) - Modular incident response framework in Powershell.
+* [PowerSponse](https://github.com/swisscom/PowerSponse) - PowerSponse is a PowerShell module focused on targeted containment and remediation during security incident response.
 * [PyaraScanner](https://github.com/nogoodconfig/pyarascanner) - Very simple multithreaded many-rules to many-files YARA scanning Python script for malware zoos and IR.
 * [rastrea2r](https://github.com/aboutsecurity/rastrea2r) - Allows one to scan disks and memory for IOCs using YARA on Windows, Linux and OS X.
 * [RaQet](https://raqet.github.io/) - Unconventional remote acquisition and triaging tool that allows triage a disk of a remote computer (client) that is restarted with a purposely built forensic operating system.