René's URL Explorer Experiment

Title: GitHub - CISSP/awesome-incident-response: A curated list of tools for incident response

Open Graph Title: GitHub - CISSP/awesome-incident-response: A curated list of tools for incident response

X Title: GitHub - CISSP/awesome-incident-response: A curated list of tools for incident response

Description: A curated list of tools for incident response. Contribute to CISSP/awesome-incident-response development by creating an account on GitHub.

Open Graph Description: A curated list of tools for incident response. Contribute to CISSP/awesome-incident-response development by creating an account on GitHub.

X Description: A curated list of tools for incident response. Contribute to CISSP/awesome-incident-response development by creating an account on GitHub.

Opengraph URL: https://github.com/CISSP/awesome-incident-response

X: @github

direct link

Domain: patch-diff.githubusercontent.com

route-pattern	/:user_id/:repository
route-controller	files
route-action	disambiguate
fetch-nonce	v2:4a7c5d9e-1e09-363a-ad74-3bd13ee59dba
current-catalog-service-hash	f3abb0cc802f3d7b95fc8762b94bdcb13bf39634c40c357301c4aa1d67a256fb
request-id	D3BC:6E05D:E28120:125F626:6992A7C1
html-safe-nonce	728f3982e6517957bd1fd7906572e3b1824f77a384ffefa94d6b5028edd695bb
visitor-payload	eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJEM0JDOjZFMDVEOkUyODEyMDoxMjVGNjI2OjY5OTJBN0MxIiwidmlzaXRvcl9pZCI6IjQxNjEyMzExMzAwOTQzODA5OTMiLCJyZWdpb25fZWRnZSI6ImlhZCIsInJlZ2lvbl9yZW5kZXIiOiJpYWQifQ==
visitor-hmac	741f3f67f76ba999fa46dd8e0f84006bc9875655fa30f219f3d8199e1e1e7d54
hovercard-subject-tag	repository:380609519
github-keyboard-shortcuts	repository,copilot
google-site-verification	Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-url	https://collector.github.com/github/collect
analytics-location	//
fb:app_id	1401488693436528
apple-itunes-app	app-id=1477376905, app-argument=https://github.com/CISSP/awesome-incident-response
twitter:image	https://opengraph.githubassets.com/63947ba42a1eae5bd4e69e735445484d312630548cdda92d4967268de00c2a9c/CISSP/awesome-incident-response
twitter:card	summary_large_image
og:image	https://opengraph.githubassets.com/63947ba42a1eae5bd4e69e735445484d312630548cdda92d4967268de00c2a9c/CISSP/awesome-incident-response
og:image:alt	A curated list of tools for incident response. Contribute to CISSP/awesome-incident-response development by creating an account on GitHub.
og:image:width	1200
og:image:height	600
og:site_name	GitHub
og:type	object
hostname	github.com
expected-hostname	github.com
None	42c603b9d642c4a9065a51770f75e5e27132fef0e858607f5c9cb7e422831a7b
turbo-cache-control	no-preview
go-import	github.com/CISSP/awesome-incident-response git https://github.com/CISSP/awesome-incident-response.git
octolytics-dimension-user_id	967307
octolytics-dimension-user_login	CISSP
octolytics-dimension-repository_id	380609519
octolytics-dimension-repository_nwo	CISSP/awesome-incident-response
octolytics-dimension-repository_public	true
octolytics-dimension-repository_is_fork	true
octolytics-dimension-repository_parent_id	45943554
octolytics-dimension-repository_parent_nwo	meirwah/awesome-incident-response
octolytics-dimension-repository_network_root_id	45943554
octolytics-dimension-repository_network_root_nwo	meirwah/awesome-incident-response
turbo-body-classes	logged-out env-production page-responsive
disable-turbo	false
browser-stats-url	https://api.github.com/_private/browser/stats
browser-errors-url	https://api.github.com/_private/browser/errors
release	848bc6032dcc93a9a7301dcc3f379a72ba13b96e
ui-target	full
theme-color	#1e2327
color-scheme	light dark

Links:

Skip to content	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#start-of-content
	https://patch-diff.githubusercontent.com/
Sign in	https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2FCISSP%2Fawesome-incident-response
GitHub CopilotWrite better code with AI	https://github.com/features/copilot
GitHub SparkBuild and deploy intelligent apps	https://github.com/features/spark
GitHub ModelsManage and compare prompts	https://github.com/features/models
MCP RegistryNewIntegrate external tools	https://github.com/mcp
ActionsAutomate any workflow	https://github.com/features/actions
CodespacesInstant dev environments	https://github.com/features/codespaces
IssuesPlan and track work	https://github.com/features/issues
Code ReviewManage code changes	https://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilities	https://github.com/security/advanced-security
Code securitySecure your code as you build	https://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they start	https://github.com/security/advanced-security/secret-protection
Why GitHub	https://github.com/why-github
Documentation	https://docs.github.com
Blog	https://github.blog
Changelog	https://github.blog/changelog
Marketplace	https://github.com/marketplace
View all features	https://github.com/features
Enterprises	https://github.com/enterprise
Small and medium teams	https://github.com/team
Startups	https://github.com/enterprise/startups
Nonprofits	https://github.com/solutions/industry/nonprofits
App Modernization	https://github.com/solutions/use-case/app-modernization
DevSecOps	https://github.com/solutions/use-case/devsecops
DevOps	https://github.com/solutions/use-case/devops
CI/CD	https://github.com/solutions/use-case/ci-cd
View all use cases	https://github.com/solutions/use-case
Healthcare	https://github.com/solutions/industry/healthcare
Financial services	https://github.com/solutions/industry/financial-services
Manufacturing	https://github.com/solutions/industry/manufacturing
Government	https://github.com/solutions/industry/government
View all industries	https://github.com/solutions/industry
View all solutions	https://github.com/solutions
AI	https://github.com/resources/articles?topic=ai
Software Development	https://github.com/resources/articles?topic=software-development
DevOps	https://github.com/resources/articles?topic=devops
Security	https://github.com/resources/articles?topic=security
View all topics	https://github.com/resources/articles
Customer stories	https://github.com/customer-stories
Events & webinars	https://github.com/resources/events
Ebooks & reports	https://github.com/resources/whitepapers
Business insights	https://github.com/solutions/executive-insights
GitHub Skills	https://skills.github.com
Documentation	https://docs.github.com
Customer support	https://support.github.com
Community forum	https://github.com/orgs/community/discussions
Trust center	https://github.com/trust-center
Partners	https://github.com/partners
GitHub SponsorsFund open source developers	https://github.com/sponsors
Security Lab	https://securitylab.github.com
Maintainer Community	https://maintainers.github.com
Accelerator	https://github.com/accelerator
Archive Program	https://archiveprogram.github.com
Topics	https://github.com/topics
Trending	https://github.com/trending
Collections	https://github.com/collections
Enterprise platformAI-powered developer platform	https://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security features	https://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI features	https://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 support	https://github.com/premium-support
Pricing	https://github.com/pricing
Search syntax tips	https://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentation	https://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in	https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2FCISSP%2Fawesome-incident-response
Sign up	https://patch-diff.githubusercontent.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E&source=header-repo&source_repo=CISSP%2Fawesome-incident-response
Reload	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response
Reload	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response
Reload	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response
CISSP	https://patch-diff.githubusercontent.com/CISSP
awesome-incident-response	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response
meirwah/awesome-incident-response	https://patch-diff.githubusercontent.com/meirwah/awesome-incident-response
Notifications	https://patch-diff.githubusercontent.com/login?return_to=%2FCISSP%2Fawesome-incident-response
Fork 0	https://patch-diff.githubusercontent.com/login?return_to=%2FCISSP%2Fawesome-incident-response
Star 2	https://patch-diff.githubusercontent.com/login?return_to=%2FCISSP%2Fawesome-incident-response
Apache-2.0 license	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/blob/master/LICENSE
2 stars	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/stargazers
1.6k forks	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/forks
Branches	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/branches
Tags	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/tags
Activity	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/activity
Star	https://patch-diff.githubusercontent.com/login?return_to=%2FCISSP%2Fawesome-incident-response
Notifications	https://patch-diff.githubusercontent.com/login?return_to=%2FCISSP%2Fawesome-incident-response
Code	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response
Pull requests 0	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/pulls
Actions	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/actions
Projects 0	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/projects
Security 0	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/security
Insights	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/pulse
Code	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response
Pull requests	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/pulls
Actions	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/actions
Projects	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/projects
Security	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/security
Insights	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/pulse
Branches	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/branches
Tags	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/tags
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/branches
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/tags
404 Commits	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/commits/master/
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/commits/master/
LICENSE	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/blob/master/LICENSE
LICENSE	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/blob/master/LICENSE
README.md	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/blob/master/README.md
README.md	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/blob/master/README.md
README_ch.md	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/blob/master/README_ch.md
README_ch.md	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/blob/master/README_ch.md
contributing.md	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/blob/master/contributing.md
contributing.md	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/blob/master/contributing.md
README	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response
Contributing	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response
Apache-2.0 license	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response
	https://github.com/sindresorhus/awesome
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#awesome-incident-response-
DFIR	http://www.acronymfinder.com/Digital-Forensics%2c-Incident-Response-%28DFIR%29.html
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#contents
Adversary Emulation	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#adversary-emulation
All in one tools	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#all-in-one-tools
Books	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#books
Communities	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#communities
Disk Image Creation Tools	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#disk-image-creation-tools
Evidence Collection	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#evidence-collection
Incident Management	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#incident-management
Linux Distributions	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#linux-distributions
Linux Evidence Collection	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#linux-evidence-collection
Log Analysis Tools	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#log-analysis-tools
Memory Analysis Tools	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#memory-analysis-tools
Memory Imaging Tools	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#memory-imaging-tools
OSX Evidence Collection	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#osx-evidence-collection
Other lists	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#other-lists
Other tools	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#other-tools
Playbooks	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#playbooks
Process Dump Tools	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#process-dump-tools
Sandboxing/reversing tools	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#sandboxingreversing-tools
Timeline tools	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#timeline-tools
Videos	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#videos
Windows Evidence Collection	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#windows-evidence-collection
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#ir-tools-collection
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#adversary-emulation
APTSimulator	https://github.com/NextronSystems/APTSimulator
Atomic Red Team (ART)	https://github.com/redcanaryco/atomic-red-team
AutoTTP	https://github.com/jymcheong/AutoTTP
Blue Team Training Toolkit (BT3)	https://www.bt3.no/
Caldera	https://github.com/mitre/caldera
DumpsterFire	https://github.com/TryCatchHCF/DumpsterFire
Metta	https://github.com/uber-common/metta
Network Flight Simulator	https://github.com/alphasoc/flightsim
Red Team Automation (RTA)	https://github.com/endgameinc/RTA
RedHunt-OS	https://github.com/redhuntlabs/RedHunt-OS
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#all-in-one-tools
Belkasoft Evidence Center	https://belkasoft.com/ec
CimSweep	https://github.com/PowerShellMafia/CimSweep
CIRTkit	https://github.com/byt3smith/CIRTKit
Cyber Triage	http://www.cybertriage.com
Doorman	https://github.com/mwielgoszewski/doorman
Falcon Orchestrator	https://github.com/CrowdStrike/falcon-orchestrator
Fleetdm	https://github.com/fleetdm/fleet
GRR Rapid Response	https://github.com/google/grr
PowerGRR	https://github.com/swisscom/PowerGRR
Limacharlie	https://www.limacharlie.io/
MozDef	https://github.com/mozilla/MozDef
nightHawk	https://github.com/biggiesmallsAG/nightHawkResponse
Open Computer Forensics Architecture	http://sourceforge.net/projects/ocfa/
osquery	https://osquery.io/
Redline	https://www.fireeye.com/services/freeware/redline.html
The Sleuth Kit & Autopsy	http://www.sleuthkit.org
TheHive	https://thehive-project.org/
X-Ways Forensics	http://www.x-ways.net/forensics/
Zentral	https://github.com/zentralopensource/zentral
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#books
Applied Incident Response	https://www.amazon.com/Applied-Incident-Response-Steve-Anson/dp/1119560268/
DFIR intro	https://medium.com/@sroberts/introduction-to-dfir-d35d5de4c180/
Incident Response & Computer Forensics, Third Edition	https://www.amazon.com/Incident-Response-Computer-Forensics-Third/dp/0071798684/
Operator Handbook: Red Team + OSINT + Blue Team Reference	https://www.amazon.com/Operator-Handbook-Team-OSINT-Reference/dp/B085RR67H5/
The Practice of Network Security Monitoring: Understanding Incident Detection and Response	http://www.amazon.com/gp/product/1593275099
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#communities
augmentd	http://augmentd.co/
Sans DFIR mailing list	https://lists.sans.org/mailman/listinfo/dfir
Slack DFIR channel	https://dfircommunity.slack.com
Signup here	https://start.paloaltonetworks.com/join-our-slack-community
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#disk-image-creation-tools
AccessData FTK Imager	http://accessdata.com/product-download/?/support/adownloads#FTKImager
Bitscout	https://github.com/vitaly-kamluk/bitscout
GetData Forensic Imager	http://www.forensicimager.com/
Guymager	http://guymager.sourceforge.net
Magnet ACQUIRE	https://www.magnetforensics.com/magnet-acquire/
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#evidence-collection
bulk_extractor	https://github.com/simsong/bulk_extractor
Cold Disk Quick Response	https://github.com/rough007/CDQR
CyLR	https://github.com/orlikoski/CyLR
artifactcollector	https://github.com/forensicanalysis/artifactcollector
ir-rescue	https://github.com/diogo-fernan/ir-rescue
Live Response Collection	https://www.brimorlabs.com/tools/
Margarita Shotgun	https://github.com/ThreatResponse/margaritashotgun
UAC	https://github.com/tclahr/uac
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#incident-management
CyberCPR	https://www.cybercpr.com
Cyphon	https://www.cyphon.io/
CORTEX XSOAR	https://www.paloaltonetworks.com/cortex/xsoar
DFIRTrack	https://github.com/dfirtrack/dfirtrack
Fast Incident Response (FIR)	https://github.com/certsocietegenerale/FIR/
KAPE	https://www.kroll.com/en/services/cyber-risk/investigate-and-respond/kroll-artifact-parser-extractor-kape
RTIR	https://www.bestpractical.com/rtir/
Sandia Cyber Omni Tracker (SCOT)	https://github.com/sandialabs/scot
threat_note	https://github.com/defpoint/threat_note
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#linux-distributions
The Appliance for Digital Investigation and Analysis (ADIA)	https://forensics.cert.org/#ADIA
Computer Aided Investigative Environment (CAINE)	http://www.caine-live.net/index.html
CCF-VM	https://github.com/rough007/CCF-VM
Digital Evidence & Forensics Toolkit (DEFT)	http://www.deftlinux.net/
NST - Network Security Toolkit	https://sourceforge.net/projects/nst/files/latest/download?source=files
PALADIN	https://sumuri.com/software/paladin/
Security Onion	https://github.com/Security-Onion-Solutions/security-onion
SANS Investigative Forensic Toolkit (SIFT) Workstation	http://digital-forensics.sans.org/community/downloads
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#linux-evidence-collection
FastIR Collector Linux	https://github.com/SekoiaLab/Fastir_Collector_Linux
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#log-analysis-tools
AppCompatProcessor	https://github.com/mbevilacqua/appcompatprocessor
APT Hunter	https://github.com/ahmedkhlief/APT-Hunter
Event Log Explorer	https://eventlogxp.com/
Kaspersky CyberTrace	https://support.kaspersky.com/13850
Lorg	https://github.com/jensvoid/lorg
Logdissect	https://github.com/dogoncouch/logdissect
Sigma	https://github.com/Neo23x0/sigma
StreamAlert	https://github.com/airbnb/streamalert
SysmonSearch	https://github.com/JPCERTCC/SysmonSearch
Zircolite	https://github.com/wagga40/Zircolite
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#memory-analysis-tools
AVML	https://github.com/microsoft/avml
Evolve	https://github.com/JamesHabben/evolve
inVtero.net	https://github.com/ShaneK2/inVtero.net
LiME	https://github.com/504ensicsLabs/LiME
MalConfScan	https://github.com/JPCERTCC/MalConfScan
Memoryze	https://www.fireeye.com/services/freeware/memoryze.html
Memoryze for Mac	https://www.fireeye.com/services/freeware/memoryze.html
Rekall	http://www.rekall-forensic.com/
Responder PRO	http://www.countertack.com/responder-pro
Volatility	https://github.com/volatilityfoundation/volatility
VolatilityBot	https://github.com/mkorman90/VolatilityBot
VolDiff	https://github.com/aim4r/VolDiff
WindowsSCOPE	http://www.windowsscope.com/windowsscope-cyber-forensics/
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#memory-imaging-tools
Belkasoft Live RAM Capturer	http://belkasoft.com/ram-capturer
Linux Memory Grabber	https://github.com/halpomeranz/lmg/
Magnet RAM Capture	https://www.magnetforensics.com/free-tool-magnet-ram-capture/
OSForensics	http://www.osforensics.com/
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#osx-evidence-collection
Knockknock	https://objective-see.com/products/knockknock.html
macOS Artifact Parsing Tool (mac_apt)	https://github.com/ydkhatri/mac_apt
OSX Auditor	https://github.com/jipegit/OSXAuditor
OSX Collector	https://github.com/yelp/osxcollector
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#other-lists
Eric Zimmerman Tools	https://ericzimmerman.github.io/
List of various Security APIs	https://github.com/deralexxx/security-apis
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#other-tools
Cortex	https://thehive-project.org
Crits	https://crits.github.io/
Diffy	https://github.com/Netflix-Skunkworks/diffy
domfind	https://github.com/diogo-fernan/domfind
Fenrir	https://github.com/Neo23x0/Fenrir
Fileintel	https://github.com/keithjjones/fileintel
HELK	https://github.com/Cyb3rWard0g/HELK
Hindsight	https://github.com/obsidianforensics/hindsight
Hostintel	https://github.com/keithjjones/hostintel
imagemounter	https://github.com/ralphje/imagemounter
Kansa	https://github.com/davehull/Kansa/
Munin	https://github.com/Neo23x0/munin
PowerSponse	https://github.com/swisscom/PowerSponse
PyaraScanner	https://github.com/nogoodconfig/pyarascanner
rastrea2r	https://github.com/rastrea2r/rastrea2r
RaQet	https://raqet.github.io/
Stalk	https://www.percona.com/doc/percona-toolkit/2.2/pt-stalk.html
Scout2	https://nccgroup.github.io/Scout2/
Stenographer	https://github.com/google/stenographer
sqhunter	https://github.com/0x4d31/sqhunter
traceroute-circl	https://github.com/CIRCL/traceroute-circl
X-Ray 2.0	https://www.raymond.cc/blog/xray/
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#playbooks
Counteractive Playbooks	https://github.com/counteractive/incident-response-plan-template/tree/master/playbooks
GuardSIght Playbook Battle Cards	https://github.com/guardsight/gsvsoc_cirt-playbook-battle-cards
IRM	https://github.com/certsocietegenerale/IRM
IR Workflow Gallery	https://www.incidentresponse.com/playbooks/
PagerDuty Incident Response Documentation	https://response.pagerduty.com/
GitHub	https://github.com/PagerDuty/incident-response-docs
Phantom Community Playbooks	https://github.com/phantomcyber/playbooks
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#process-dump-tools
Microsoft ProcDump	https://docs.microsoft.com/en-us/sysinternals/downloads/procdump
PMDump	http://www.ntsecurity.nu/toolbox/pmdump/
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#sandboxingreversing-tools
AMAaaS	https://amaaas.com/index.php/AMAaaS/dashboard
Any Run	https://app.any.run/
CAPEv2	https://github.com/kevoreilly/CAPEv2
Cuckoo	https://github.com/cuckoosandbox/cuckoo
Cuckoo-modified	https://github.com/spender-sandbox/cuckoo-modified
Cuckoo-modified-api	https://github.com/keithjjones/cuckoo-modified-api
Cutter	https://github.com/radareorg/cutter
Hybrid-Analysis	https://www.hybrid-analysis.com/
Intezer	https://analyze.intezer.com/#/
Joe Sandbox (Community)	https://www.joesandbox.com/
Mastiff	https://github.com/KoreLogicSecurity/mastiff
Metadefender Cloud	https://www.metadefender.com
Radare2	https://github.com/radareorg/radare2
Reverse.IT	https://www.reverse.it/
StringSifter	https://github.com/fireeye/stringsifter
Valkyrie Comodo	https://valkyrie.comodo.com
Viper	https://github.com/viper-framework/viper
Virustotal	https://www.virustotal.com
Visualize_Logs	https://github.com/keithjjones/visualize_logs
Yomi	https://yomi.yoroi.company
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#timeline-tools
Aurora Incident Response	https://github.com/cyb3rfox/Aurora-Incident-Response
Highlighter	https://www.fireeye.com/services/freeware/highlighter.html
Morgue	https://github.com/etsy/morgue
Plaso	https://github.com/log2timeline/plaso
Timesketch	https://github.com/google/timesketch
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#videos
The Future of Incident Response	https://www.youtube.com/watch?v=bDcx4UNpKNc
	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#windows-evidence-collection
AChoir	https://github.com/OMENScan/AChoir
Crowd Response	http://www.crowdstrike.com/community-tools/
DFIR ORC	https://dfir-orc.github.io/
GitHub	https://github.com/DFIR-ORC/dfir-orc
FastIR Collector	https://github.com/SekoiaLab/Fastir_Collector
Fibratus	https://github.com/rabbitstack/fibratus
IREC	https://binalyze.com/products/irec-free/
Invoke-LiveResponse	https://github.com/mgreen27/Invoke-LiveResponse
IOC Finder	https://www.fireeye.com/services/freeware/ioc-finder.html
IRTriage	https://github.com/AJMartel/IRTriage
LOKI	https://github.com/Neo23x0/Loki
MEERKAT	https://github.com/TonyPhipps/Meerkat
Panorama	https://github.com/AlmCo/Panorama
PowerForensics	https://github.com/Invoke-IR/PowerForensics
PSRecon	https://github.com/gfoss/PSRecon/
RegRipper	https://github.com/keydet89/RegRipper3.0
Readme	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#readme-ov-file
Apache-2.0 license	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#Apache-2.0-1-ov-file
Contributing	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response#contributing-ov-file
Please reload this page	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response
Activity	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/activity
2 stars	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/stargazers
0 watching	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/watchers
0 forks	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/forks
Report repository	https://patch-diff.githubusercontent.com/contact/report-content?content_url=https%3A%2F%2Fgithub.com%2FCISSP%2Fawesome-incident-response&report=CISSP+%28user%29
Releases	https://patch-diff.githubusercontent.com/CISSP/awesome-incident-response/releases
Packages 0	https://patch-diff.githubusercontent.com/users/CISSP/packages?repo_name=awesome-incident-response
	https://github.com
Terms	https://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacy	https://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Security	https://github.com/security
Status	https://www.githubstatus.com/
Community	https://github.community/
Docs	https://docs.github.com/
Contact	https://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.