We are a security team with 20+ years of ethical hacking, and we've defended over 2 million attacks with Blumira. Ask Us Anything.

This page summarizes the projects mentioned and recommended in the original post on reddit.com/r/cybersecurity

Our great sponsors
  • SonarLint - Deliver Cleaner and Safer Code - Right in Your IDE of Choice!
  • JetBrains - Developer Ecosystem Survey 2022
  • Scout APM - Less time debugging, more time building
  • sigma

    Generic Signature Format for SIEM Systems

    In general I'm going to take the somewhat oppositional standpoint and say that all of these tools are damned similar in the grand scheme of it all. I think if you have the time you're better off implementing Sysmon across your entire Windows environment and utilize Sigma or similar to quickly improve your behavior detections and instead depend on your EDRs to handle known signature-based detections.

  • dfirtrack

    DFIRTrack - The Incident Response Tracking Application

  • SonarLint

    Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.

  • TheHive

    TheHive: a Scalable, Open Source and Free Security Incident Response Platform

    https://thehive-project.org/ - of course :)

  • Wazuh

    Wazuh - The Open Source Security Platform

    https://github.com/wazuh/wazuh - Elastic is a PITA to grow but works well for viz

  • grr

    GRR Rapid Response: remote live forensics for incident response

    https://github.com/google/grr - great as a homegrown agent

  • velociraptor

    Digging Deeper....

    https://github.com/Velocidex/velociraptor - purchased recently but still a great tool

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts