Search Results for "incident response management"
Sort By:
Showing 32 open source projects for "incident response management"
View related business solutions-
Try Google Cloud Risk-Free With $300 in CreditUse your credit across every product. Compute, storage, AI, analytics. When it runs out, 20+ products stay free. You only pay when you choose to.
-
Gemini 3 and 200+ AI Models on One PlatformBuild generative AI apps with Vertex AI. Switch between models without switching platforms.
-
1
NoneBot
Asynchronous multi-platform robot framework written in Python
Use NB-CLI to quickly build your own robot. Plug-in development, modular management. Supports multiple platforms and multiple incident response methods. Asynchronous priority development to improve operational efficiency. Simple and clear dependency injection system, built-in dependency functions reduce user code. NoneBot2 is a modern, cross-platform, and extensible Python chatbot framework. It is based on Python's type annotations and asynchronous features, and can provide convenient and flexible support for your needs. ... -
2
GRR
GRR Rapid Response, remote live forensics for incident response
GRR Rapid Response is an incident response framework focused on remote live forensics. It consists of a python client (agent) that is installed on target systems, and python server infrastructure that can manage and talk to clients. The goal of GRR is to support forensics and investigations in a fast, scalable manner to allow analysts to quickly triage attacks and perform analysis remotely. -
3
Volatility
An advanced memory forensics framework
...It enables investigators and malware analysts to extract process lists, network connections, DLLs, strings, artifacts, and more. Volatility supports many plugins for detecting hidden processes, malware, rootkits, and event tracing. It’s essential in digital forensics and incident response workflows. -
4
Timesketch
Collaborative forensic timeline analysis
...Integrations with popular DFIR pipelines make ingestion repeatable, while role-based access and audit logs support enterprise workflows. By combining scale, collaboration, and reproducibility, Timesketch moves incident response beyond ad-hoc spreadsheets to a durable, team-oriented investigation record. -
MongoDB Atlas runs apps anywhereMongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
-
5
aws-cli
Universal Command Line Interface for Amazon Web Services
...Waiters, paginators, and retries handle long-running or large list operations cleanly so scripts are resilient. The CLI’s stability and extensive documentation make it a cornerstone for CI/CD, incident response, and day-to-day operations. -
6
StackStorm
Connect all your apps, services, and workflows
StackStorm is a platform for integration and automation for numerous services and tools. It takes actions in response to events, and is composed of a rules engine, workflow, and 160 integration packs with more than 6000 actions. This makes StackStorm very versatile, useful in a wide array of business applications. StackStorm can be used to automate and streamline nearly any part of a business. It can be used for automated remediation to immediately troubleshoot and fix problems when... -
7
IntelOwl
Centralized platform for automated threat intelligence analysis
...IntelOwl was created to automate repetitive investigation tasks typically performed by security operations center (SOC) analysts, helping teams focus on deeper analysis and incident response. The system features a modular architecture built around plugins that allow new analyzers, connectors, and integrations to be added easily. These plugins can collect data from external intelligence platforms or generate insights using internal analysis tools such as YARA or static malware analyzers. -
8
Agent SOP
Natural language workflows for AI agents
...It defines reusable SOP templates that agents can instantiate with context-specific parameters, allowing organizations to codify best practices for customer support, data processing, document workflows, or incident response. The framework supports monitoring and state tracking, so external systems can observe progress, intervene if necessary, and log outcomes for compliance or auditing. Integrations with common messaging and task orchestration systems enable SOP agents to interact with email, ticket queues, and databases as part of their workflows. -
9
EKS Best Practices
A best practices guide for day 2 operations
...Each section dives into operational details—for example, how to manage IAM roles for service accounts, secure the EKS endpoint, handle node auto-scaling, and design for multi-AZ resilience. Because running Kubernetes in production demands many “day-2” considerations (upgrades, drift, monitoring, incident response), the guide provides practical advice beyond simple cluster provisioning. -
Stop Storing Third-Party Tokens in Your DatabaseRolling your own OAuth token storage can be a security liability. Token Vault securely stores access and refresh tokens from federated providers and handles exchange and renewal automatically. Connected accounts, refresh exchange, and privileged worker flows included.
-
10
Airbyte
Data integration platform for ELT pipelines from APIs, databases
We believe that only an open-source solution to data movement can cover the long tail of data sources while empowering data engineers to customize existing connectors. Our ultimate vision is to help you move data from any source to any destination. Airbyte already provides the largest catalog of 300+ connectors for APIs, databases, data warehouses, and data lakes. Moving critical data with Airbyte is as easy and reliable as flipping on a switch. Our teams process more than 300 billion rows... -
11
The Falcon Web Framework
The no-nonsense REST API and microservices framework
...Falcon cuts to the chase with a clean design that embraces HTTP and the REST architectural style. Highly optimized, extensible code base. Easy access to headers and bodies through request and response objects. DRY request processing via middleware components and hooks. Strict adherence to RFCs. Idiomatic HTTP error responses. Straightforward exception handling. Snappy testing with WSGI/ASGI helpers and mocks. CPython 3.5+ and PyPy 3.5+ support. No reliance on magic globals for routing and state management. Stable interfaces with an emphasis on backward compatibility. ... -
12
Instructor
Structured outputs for llms
Instructor is a tool that enables developers to extract structured data from natural language using Large Language Models (LLMs). Integrating with Python's Pydantic library allows users to define desired output structures through type hints, facilitating schema validation and seamless integration with IDEs. Instructor supports various LLM providers, including OpenAI, Anthropic, Litellm, and Cohere, offering flexibility in implementation. Its customizable nature permits the definition of... -
13
Digital Forensics Guide
Learn all about Digital Forensics and Computer Forensics
The Digital Forensics Guide repository is a comprehensive, structured reference for investigators, analysts, students, and cybersecurity professionals interested in digital forensics principles, tools, methodologies, and workflows. It organizes foundational topics such as evidence acquisition, disk and memory analysis, file system structures, network forensics, artifact extraction, timeline generation, and reporting into digestible modules that help build core competency. Alongside... -
14
key-elf
Forensic tool to recover lost BTC private keys.
A powerful utility to hunt down Bitcoin private keys from deleted wallet.dat files or damaged hard drives. If you accidentally deleted your Bitcoin Core wallet or formatted your disk, this tool can help. It bypasses the file system and scans the raw data directly, looking for the unique "fingerprint" (ASN.1 signature) of Bitcoin private keys to recover them from the digital wreckage.The Graphical User Interface (GUI) is the advanced/premium version. If needed, please visit:... -
15
Aviary
Ray Aviary - evaluate multiple LLMs easily
...Aviary has native support for autoscaling and multi-node deployments thanks to Ray and Ray Serve. Aviary can scale to zero and create new model replicas (each composed of multiple GPU workers) in response to demand. Ray ensures that the orchestration and resource management is handled automatically. Aviary is able to support hundreds of replicas and clusters of hundreds of nodes, deployed either in the cloud or on-prem. -
16
BoolHub
A fully functional personal information management software.
[Native application]: Developed with QT, pure native application, faster response; Cloud synchronization: Data is recorded in the cloud, and the data is no longer lost. Data synchronization is unlimited, everything is in your control; [Rich note types]: Support rich text, Markdown, code, tables, drawings, flowcharts and other note formats; [Manage your customers]: A customer relationship management system that supports team collaboration to grasp every lead and every customer; [Manage daily affairs]: Manage your affairs in an orderly manner through the feature-rich to-do list view; [Free without function limit]: There is no limit to the software functions, free to use, we are just to make a friend; [Different moods and different themes]: Notes and to-do lists, support a variety of exquisite themes, do whatever you want, change it if you want; [More application scenarios]: Memo view, timeline view, passwordbook view, statistics view to meet your different needs. -
17
LazyDS4
Transform your DualShock 4 into a native Xbox 360 controller. v2.1.0
LazyDS4 is a controller mapping application designed to convert HID input from a DualShock 4 controller directly to a virtual Xbox 360 controller. Optimized for simplicity and performance, it offers real-time input mapping with a ~1ms (1000Hz) polling rate, modern graphical interface with PyQt5, and automatic joystick calibration. 📌 What's New (v2.1.0) 🎨 Visual Overhaul — Modern, professional interface with gradient backgrounds and advanced styling 📐 Layout Optimization — Improved... -
18
Dosidicus
Tamagotchi-style digital pet with a neural network that can learn
...Hebbian learning algorithm runs every 30 seconds (configurable) Experiences from short-term and long-term memory can influence decision-making Squid can create new neurons in response to his environment (Neurogenesis) Design your own squid brain with GUI tools! Needs Management System: Tracks various needs like hunger, sleepiness, happiness, and cleanliness. Needs change over time and affect the pet's health and behavior. The squid can become sick and die if his needs are neglected. Personality system Seven different personality -
19
Bard
Python SDK/API for reverse engineered Google Bard
...Because Google doesn’t provide a standard public API for Bard, this project works by reverse-engineering the web interactions that power Bard’s interface and exposing them through code-friendly interfaces, enabling chat automation, custom workflows, and bot creation. The repository typically includes authentication handling, session management, and request/response serialization so that developers don’t have to deal with low-level HTTP details. Users can integrate Bard into Python scripts, chatbots, or local testing environments where conversational AI is useful but an official API isn’t yet available. -
20
ACORBA
Automated approach to measure root tip angles of Arabidopsis thaliana
Gravitropic response is studied in most of the laboratories working with Arabidopsis thaliana, for example, to detect new phenotypes in mutants. However, manual analysis of images and microscopy data are known to be subjected to human bias. This is particularly the case for manual measurements of root bending as the angle is set subjectively. In this context, it is essential to develop and use automated or semi-automated image analysis to produce faster, reproducible, and unbiased data. In... -
21
StreamAlert
StreamAlert is a serverless, realtime data analysis framework
StreamAlert is a serverless, real-time data analysis framework that empowers you to ingest, analyze, and alert on data from any environment, using data sources and alerting logic you define. Computer security teams use StreamAlert to scan terabytes of log data every day for incident detection and response. Incoming log data will be classified and processed by the rules engine. Alerts are then sent to one or more outputs. Rules are written in Python; they can utilize any Python libraries or functions. Merge similar alerts and automatically promote new rules if they are not too noisy. Ingested logs and generated alerts can be retroactively searched for compliance and research. ... -
22
Zappa
Serverless Python
Zappa makes it super easy to build and deploy serverless, event-driven Python applications (including, but not limited to, WSGI web apps) on AWS Lambda + API Gateway. Think of it as "serverless" web hosting for your Python apps. That means infinite scaling, zero downtime, zero maintenance - and at a fraction of the cost of your current deployments! With a traditional HTTP server, the server is online 24/7, processing requests one by one as they come in. If the queue of incoming requests... -
23
MozDef
MozDef: Mozilla Enterprise Defense Platform
MozDef aims to bring real-time incident response and investigation to the defensive toolkits of security operations groups in the same way that Metasploit, LAIR, and Armitage have revolutionized the capabilities of attackers. We use MozDef to ingest security events, alert us to security issues, investigate suspicious activities, handle security incidents, and visualize and categorize threat actors. -
24
DisplayCAL
Display Calibration and Characterization powered by Argyll CMS
DisplayCAL (formerly known as dispcalGUI) is a graphical user interface for the display calibration and profiling tools of Argyll CMS, an open source color management system. Calibrate and characterize your display devices using one of the many supported measurement instruments, with support for multi-display setups and a variety of available settings like customizable whitepoint, luminance, tone response curve as well as the option to create accurate look-up-table ICC profiles as well as some proprietary 3D LUT formats. ... -
25
WeChatSogou
Python library to crawl and retrieve data from WeChat accounts
WechatSogou is an open source Python library designed to retrieve data from WeChat official accounts by using the Sogou WeChat search service as its data source. It provides developers with a programmatic way to search for public accounts and collect article information without manually browsing the search interface. It functions as a crawler interface that sends requests to the search engine, retrieves results, and converts the returned pages into structured data that can be used in...
