ThreatResponse

All

39 repositories

aws_ir
Public
Python installable command line utiltity for mitigation of host and key compromises.
Python
•
MIT License
•64•344•14•1•Updated Jul 23, 2021Jul 23, 2021
margaritashotgun
Public
Remote Memory Acquisition Tool
Python
•
MIT License
•50•242•12•1•Updated Sep 22, 2020Sep 22, 2020
ThreatPrep
Public
Python module for evaluation of AWS account best practices around incident handling readieness.
Python
•
MIT License
•16•55•0•0•Updated Jun 26, 2020Jun 26, 2020
serverless-showdown-api
Public
Python
•2•1•1•0•Updated Jun 26, 2020Jun 26, 2020
python-lambda-inspector
Public
A profiler for the lambda sandbox.
Python
•
MIT License
•7•6•7•0•Updated Jun 26, 2020Jun 26, 2020
mad-king
Public
Proof of Concept Zappa Based AWS Persistence and Attack Platform
Python
•
MIT License
•6•37•0•0•Updated Jun 26, 2020Jun 26, 2020
defense-against-the-dark-arts
Public
Defense against the dark arts blog series code.
Python
•
MIT License
•1•5•0•0•Updated Jun 26, 2020Jun 26, 2020
ssm-acquire
Public
A python module for orchestrating content acquisitions and analysis via amazon ssm.
Python
•
Mozilla Public License 2.0
•18•6•0•0•Updated Nov 27, 2018Nov 27, 2018
aws_ir_plugins
Public
Core incident handling plugins for aws_ir cli, incident pony, and more.
Python
•
MIT License
•7•21•6•0•Updated Jul 7, 2018Jul 7, 2018
auth0-rules
Public
Reference rules for integration for auth0.
HTML
•
Mozilla Public License 2.0
•1•1•0•0•Updated Mar 3, 2018Mar 3, 2018
threatresponse.cloud
Public
middleman generated site
CSS
•
MIT License
•4•3•1•0•Updated Nov 30, 2017Nov 30, 2017
federated_access_proxy
Public
BeyondCorp-style federated access proxy
CSS
•
Mozilla Public License 2.0
•13•1•0•0•Updated Nov 12, 2017Nov 12, 2017
serverless-vulnerable-azure
Public
A vulnerable app for Azure functions
JavaScript
•4•5•0•0•Updated Jul 27, 2017Jul 27, 2017
bad-repo
Public
Demonstration repository.
Python
•0•0•0•0•Updated Jul 26, 2017Jul 26, 2017
lime-compiler
Public
WIP compiler for lime kernel modules
Ruby
•
MIT License
•1•9•9•0•Updated Jul 24, 2017Jul 24, 2017
poor-webhook
Public
An example of a vulnerable slack bot that runs in AWS lambda.
Python
•
Mozilla Public License 2.0
•2•19•0•0•Updated Jul 15, 2017Jul 15, 2017
serverless-observatory
Public
A zappa project for scoring output of threatresponse serverless profilers.
Python
•
MIT License
•1•6•0•0•Updated May 30, 2017May 30, 2017
node-lambda-inspector
Public
A profiler for the lambda sandbox.
JavaScript
•
MIT License
•1•3•5•0•Updated Apr 5, 2017Apr 5, 2017
ansible-edda
Public
Edda ansible playbooks for ThreatResponse supported AMI.
Mozilla Public License 2.0
•0•2•0•0•Updated Mar 18, 2017Mar 18, 2017
packer-gold
Public
Packer file and lite touch ansible playbook to set up an ansible-container host.
Shell
•3•0•0•0•Updated Mar 13, 2017Mar 13, 2017
csharp-lambda-inspector
Public
A profiler for the lambda sandbox.
C#
•
MIT License
•0•1•4•0•Updated Mar 12, 2017Mar 12, 2017
aws_ir-api
Public
A chalice API gateway wrapper around aws_ir. **Highly experimental**
profile cloudformation keypair boto chalice aws-ir
Python
•
MIT License
•1•2•0•0•Updated Mar 6, 2017Mar 6, 2017
packer-limecompiler
Public
Packer file to build the lime-compiler AMI
Shell
•
MIT License
•0•0•0•0•Updated Feb 4, 2017Feb 4, 2017
threatresponse-bsides
Public
CSS
•1•2•0•0•Updated Oct 17, 2016Oct 17, 2016
margaritashotgun-bsides
Public
CSS
•0•0•0•0•Updated Oct 14, 2016Oct 14, 2016
cloudtrailbeat
Public
AWS CloudTrail in ElasticSearch
Go
•
MIT License
•8•3•0•0•Updated Oct 2, 2016Oct 2, 2016
derbycon-preso
Public
CSS
•0•1•0•0•Updated Sep 29, 2016Sep 29, 2016
docker-elk
Public
The ELK stack powered by Docker and Compose.
Shell
•
MIT License
•6.8k•7•0•0•Updated Sep 26, 2016Sep 26, 2016
hovercraft-template
Public
CSS
•0•1•0•0•Updated Sep 6, 2016Sep 6, 2016
packer-threatresponse_workstation
Public
Packer build of the ThreatResponse AMI
MIT License
•1•8•0•0•Updated Sep 1, 2016Sep 1, 2016