List of tools for Incident Response and Digital Forensics

Event Logging & Management

Intrusion Detection

  • Snort - Network Intrusion Detection & Prevention System
  • OSSEC - World's Most Widely Used Host Intrusion Detection System - HIDS
  • Suricata - Open-Source IDS / IPS / NSM engine

Availability Monitoring

  • Nagios - The Industry Standard In IT Infrastructure Monitoring

Forensic Analysis

Threat Intelligence & Threat Hunting

Security Awareness

Backup & Data Protection