Technology cybersecurity hacking infosec Information Security Malware Analysis Open Source SOC Tools Incident Management Systems Network Security Monitoring Intrusion Detection Systems Alert Triage Full Packet Capture Endpoint Monitoring Logging Threat Intelligence Platforms Linux Distributions Log Management Alerting Engine
Lohitaksh Nandan
Lohitaksh Nandan

@NandanLohitaksh

4 Tweets 80 reads Jan 17, 2023
Twitter
Open Source SOC Tools
Incident Management Systems
• TheHive
• FIR
Network Security Monitoring
• IDS, network metadata
‒ Suricata: IDS, network metadata, and PCAP capable
‒ EVEbox: Alert triage
‒ Snort
‒ Zeek
#cybersecurity #infosec #hacking
• Full Packet Capture
‒ Moloch
‒ Google Stenographer
‒ Netsniff-ng
• Distributions
‒ Security Onion
‒ RockNSM
Endpoint monitoring / HIDS
• NXLog Community Edition: logging agent
• OSQuery
• OSSEC: HIDS
• Sysmon
• Wazuh: HIDS
Incident Response
• Kansa
• Velociraptor
Malware Sandbox and Malware Analysis
• Cuckoo Sandbox
• REMnux: malware analysis tools Linux distro
Threat Intelligence Platforms
• MISP
• OpenCTI
Purple Team Testing and Reporting
• Vectr
SIEM / Log Management
• Elastic Stack
‒ Elastalert: Alerting Engine
Security Orchestration Automation and Response
• NSA Walkoff
• Shuffle
• IBM Node-Red: generalized automation / orchestration framework
#cybersecurity #infosec #hacking

Categories

Technology cybersecurity hacking infosec Information Security Malware Analysis Open Source SOC Tools Incident Management Systems Network Security Monitoring Intrusion Detection Systems Alert Triage Full Packet Capture Endpoint Monitoring Logging Threat Intelligence Platforms Linux Distributions Log Management Alerting Engine

Some tweets missing

Loading suggestions...