From 5c05e1533095db9e1b40c8b54003994ab6104e58 Mon Sep 17 00:00:00 2001 From: Herman Slatman Date: Mon, 9 May 2016 09:50:23 +0200 Subject: [PATCH] Kolide added --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index c91e195..961075f 100644 --- a/README.md +++ b/README.md @@ -73,6 +73,7 @@ A curated list of tools and resources for security incident response, aimed to h * [Limacharlie](https://github.com/refractionpoint/limacharlie) - an endpoint security platform. It is itself a collection of small projects all working together, and gives you a cross-platform (Windows, OSX, Linux, Android and iOS) low-level environment allowing you to manage and push additional modules into memory to extend its functionality * [Belkasoft Evidence Center](https://belkasoft.com/ec) - The toolkit will quickly extract digital evidence from multiple sources by analyzing hard drives, drive images, memory dumps, iOS, Blackberry and Android backups, UFED, JTAG and chip-off dumps * [CIRTkit](https://github.com/byt3smith/CIRTKit) - CIRTKit is not just a collection of tools, but also a framework to aid in the ongoing unification of Incident Response and Forensics investigation processes +* [Kolide](https://github.com/mephux/kolide) - Kolide is an agentless osquery web interface and remote api server. Kolide was designed to be extremely portable (a single binary) and performant while keeping the codebase simple. It replaces Envdb. ### Incident Management * [FIR](https://github.com/certsocietegenerale/FIR/) - Fast Incident Response (FIR) is an cybersecurity incident management platform designed with agility and speed in mind. It allows for easy creation, tracking, and reporting of cybersecurity incidents and is useful for CSIRTs, CERTs and SOCs alike