Tool directory

SOCBOX
The SOCBOX team is here to help you.

InsightIDR

Rapid7

A SIEM tool that features a fully integrated incident investigation workflow. With InsightIDR, a user can be alerted of incidents (with an intrusion detection system, or IDS), and investigate the incidents with network logs, OS event logs, domain controller logs, and more. The tool not only provides detection functionality, but facilitates the entire investigation process of an incident.


Related resources: