|7 days ago||6 days ago|
|-||GNU Affero General Public License v3.0|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
What are good ways to organize notes during an incident? CISObox?
1 project | reddit.com/r/cybersecurity | 22 Nov 2021
Take a look at TheHive! It's free, as long as you can spend some cycles hosting, maintaining, and updating it. I was able to stand up a basic instance within an hour or so, plus they have a really useful demo VM prebuilt that lets you literally import a demo instance to play around with.
We are a security team with 20+ years of ethical hacking, and we've defended over 2 million attacks with Blumira. Ask Us Anything.
6 projects | reddit.com/r/cybersecurity | 18 Oct 2021
https://thehive-project.org/ - of course :)
Ran across this in a hacking penetration group. Thought it was pretty interesting.. A little to much so and a little too ironic to not mean something.
1 project | reddit.com/r/TheeHive | 14 Oct 2021
SOC people, what are your goto websites for checking domain/IP reputation?
1 project | reddit.com/r/AskNetsec | 2 Oct 2021
Top 20 Open-source tools for every Blue Teamer
1 project | reddit.com/r/TutorialBoy | 1 Oct 2021
Its official website: https://thehive-project.org
I want to buy a SIEM, but I don't know which one
3 projects | reddit.com/r/AskNetsec | 8 Sep 2021
I also recommend checking out TheHive Project and Cortex. I used these in my SOC days and was super impressed with features, like linking incidents automatically based on reported IOCs. TheHive runs on elasticsearch under the hood, too.
What's in your toolkit?
8 projects | reddit.com/r/cybersecurity | 3 Sep 2021
We used to use TheHive and really liked it. The IoC tracking and case linking was very nice. And the Cortex integrations were awesome. And then manglement dictated a single ticket system to rule them all. Since they didn't bother to purchase the IR module, we're stuck with a subpar system which I'll leave nameless.
Need evidence management software recommendation
1 project | reddit.com/r/computerforensics | 26 Aug 2021
Depending on what you need TheHive might be a sufficient open source solution: https://github.com/TheHive-Project/TheHive
Are there any free / open source Evidence Management Systems?
4 projects | reddit.com/r/computerforensics | 18 Aug 2021
Looking for a solution for conducting investigations - organizing evidence, identifying patterns in log files, etc. Like digital forensics/intelligence gathering maybe? More details inside.
1 project | reddit.com/r/selfhosted | 5 May 2021
What are some alternatives?
Aurora-Incident-Response - Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
Wazuh - Wazuh - The Open Source Security Platform
dislocker - FUSE driver to read/write Windows' BitLocker-ed volumes under Linux / Mac OSX
Kuiper - Digital Forensics Investigation Platform
velociraptor - Digging Deeper....
CortexDocs - Documentation of Cortex
dfirtrack - DFIRTrack - The Incident Response Tracking Application
dfir-orc - Forensics artefact collection tool for systems running Microsoft Windows
CyberChef - The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
grr - GRR Rapid Response: remote live forensics for incident response
scala-pet-store - An implementation of the java pet store using FP techniques in scala