mikesxrs
d6a8e61bd8
Adding multiple sections
...
Added misc information I have found useful
-Highlighter from Fire/Mandiant
-RegRipper Registry tool for win forensics
-OSX Evidence Section
-Sandboxing/reversing tools (both local and online)
-Etherpad For document collaboration
-Kibana for Big data visualization
-Elastic Search for Big Data searching (think log analysis)
-Book Section with Amazon link (feel free to change)
2015-11-25 15:19:43 -05:00
Meir Wahnon
0fbcebe4eb
Merge pull request #18 from meirwah/SEC-squad-master
...
Sec squad master
2015-11-25 22:15:16 +02:00
meir
fb02d03ed6
remove duplicate DumpIt
2015-11-25 22:13:18 +02:00
John Troony
ada6c7fa7e
Add DumpIt and Redline
...
DumpIt is a Windows memory imaging tool. It makes use of win32dd and win64dd. Redline on the other hand, is a all in one tool that can assist in development of a threat assessment profile.
2015-11-25 12:57:21 +00:00
Meir Wahnon
cf5abaef21
Merge pull request #16 from hslatman/hs_20151124
...
AChoir + DumpIt
2015-11-24 13:20:12 +02:00
Herman Slatman
353fb86e01
AChoir Scripting Platform for Windows IR Utilities
2015-11-24 11:58:29 +01:00
Herman Slatman
bdaf02a07b
DumpIt by MoonSols; generic download page
2015-11-24 11:57:20 +01:00
Meir Wahnon
eda079fa60
Add Pt-Stalk tool
2015-11-24 09:42:37 +02:00
Meir Wahnon
42241e9a25
Merge pull request #15 from hslatman/hs_data_collection
...
Data Collection Category
2015-11-22 16:37:38 +02:00
Herman Slatman
14054aba6c
Change of category title + link
2015-11-22 15:33:34 +01:00
Herman Slatman
f9f0316d19
FastIR Collector added
2015-11-22 15:28:06 +01:00
Herman Slatman
b1d25f7656
Move FECT + PSRecon to Data Collection
2015-11-22 15:27:23 +01:00
Herman Slatman
9fb87f438b
Link data collection in contents
2015-11-22 15:26:43 +01:00
Herman Slatman
0a387d4c2c
Data Collection category added
2015-11-22 15:25:02 +01:00
Meir Wahnon
a3ca596a6f
Small fix
2015-11-21 09:44:39 +02:00
Meir Wahnon
7159e5b0ac
Adding rekall
2015-11-21 09:44:09 +02:00
Meir Wahnon
28dcc63414
Merge pull request #13 from hslatman/hs_20151120a
...
PSRecon by LogRhythm PowerShell Tool
2015-11-20 15:49:10 +02:00
Herman Slatman
370ce39996
PSRecon by LogRhythm PowerShell Tool
2015-11-20 14:43:08 +01:00
Meir Wahnon
47e5a4cb31
Merge pull request #11 from meirwah/info
...
elaborate info
2015-11-20 12:02:48 +02:00
Meir Wahnon
b8035c51b1
linkify DFIR
2015-11-20 12:02:32 +02:00
Meir Wahnon
24abc537c8
elaborate info
2015-11-18 20:16:53 +02:00
Meir Wahnon
50c48aab0a
Merge pull request #10 from hslatman/hs_20151118
...
Kansa, RTIR, FECT added
2015-11-18 13:39:27 +02:00
Herman Slatman
b5418d9cdf
Request Tracker for Incident Response (RTIR) added
2015-11-18 12:15:45 +01:00
Herman Slatman
6a5634807e
Kansa Modular Powershell Framework
2015-11-18 12:14:55 +01:00
Herman Slatman
d7d36c83ff
Fast Evidence Collector Toolkit
2015-11-18 12:13:07 +01:00
Meir Wahnon
046a9c79ef
fix videos link
2015-11-17 22:03:27 +02:00
Herman Slatman
1a5f130ba0
Added incident management to 'contents'
2015-11-17 14:56:10 +01:00
Meir Wahnon
c1b7b4a9d5
Merge pull request #9 from hslatman/hs_fir
...
New Category: Incident Management
2015-11-17 12:17:34 +02:00
Herman Slatman
606c887b2c
Sandia Cyber Omni Tracker added
2015-11-17 10:53:46 +01:00
Herman Slatman
6c75fde30f
New category 'Incident Management' + Fast Incident Response
2015-11-17 10:51:52 +01:00
Meir Wahnon
bf05404d09
Add Hindsight
2015-11-16 20:35:05 +02:00
Meir Wahnon
3a8063d67a
Merge pull request #7 from hslatman/hs_fido
...
FIDO by Netflix
2015-11-16 09:57:54 +02:00
Meir Wahnon
dd65dbc95c
Merge pull request #8 from hslatman/hs_future_incident_response
...
The Future of Insident Response Presentation by Bruce Schneier
2015-11-16 09:56:57 +02:00
Herman Slatman
834d9e9693
FIDO by Netflix
2015-11-16 08:40:04 +01:00
Herman Slatman
af2afe48f1
The Future of Insident Response by Bruce Schneier
2015-11-16 08:36:40 +01:00
Meir Wahnon
139c407dd8
Merge pull request #6 from hslatman/hs_osquery
...
Osquery by Facebook
2015-11-15 11:39:56 +02:00
Meir Wahnon
1c137b467d
Merge pull request #5 from hslatman/hs_mig
...
Mozilla Investigator
2015-11-15 11:36:35 +02:00
Herman Slatman
b242b9cdaf
osquery by Facebook added
2015-11-15 09:07:08 +01:00
Herman Slatman
f8d2a8d1e2
Mozilla Investigator added
2015-11-15 09:02:23 +01:00
Meir Wahnon
6d78cce9a3
Merge pull request #4 from meirwah/hslatman-hs_mozdef
...
Hslatman hs mozdef
2015-11-15 00:53:55 +02:00
meir
f86f349de6
Merge branch 'master' of github.com:meirwah/awesome-incident-response into hslatman-hs_mozdef
...
# Conflicts:
# README.md
2015-11-15 00:53:51 +02:00
meir
8b1f86050a
Merge branch 'hs_mozdef' of https://github.com/hslatman/awesome-incident-response into hslatman-hs_mozdef
...
# Conflicts:
# README.md
2015-11-15 00:51:47 +02:00
Meir Wahnon
3191c49162
Merge pull request #3 from meirwah/hslatman-hs_grr
...
Hslatman hs grr
2015-11-15 00:35:22 +02:00
meir
7a9faa9b2e
Merge branch 'hs_grr' of https://github.com/hslatman/awesome-incident-response into hslatman-hs_grr
...
# Conflicts:
# README.md
2015-11-15 00:34:01 +02:00
Herman Slatman
343ee6bad5
MozDef by Mozilla added
2015-11-14 20:10:17 +01:00
Meir Wahnon
b4dd033ef8
add timeline
2015-11-14 19:43:28 +02:00
Meir Wahnon
271896540e
Update README.md
2015-11-14 19:36:14 +02:00
Meir Wahnon
40d585d06c
add video
2015-11-14 19:35:05 +02:00
Herman Slatman
20bfebb726
GRR Rapid Response added
2015-11-14 18:13:40 +01:00
Meir Wahnon
6b229d6e4d
add contrib guide
2015-11-13 23:55:16 +02:00