Home / Operations Management / Security Operations / Incident Response Investigation System (IRIS)
Incident Response Investigation System (IRIS)

Incident Response Investigation System (IRIS)

Pricing: Free
Write a Review Visit Website
Incident Response Investigation System (IRIS)

What is Incident Response Investigation System (IRIS)

Collection of scripts and resources for DevSecOps, Security Automation and Automated Incident Response Remediation.

IRIS: A Collaborative Web Platform for Incident Responders

IRIS is a web-based collaborative platform that helps incident responders share technical details during investigations.

It consists of two primary components

IrisWeb serves as the core web application responsible for managing the interface and database. In contrast, IrisModules are extensions that enable third parties to process data. For example, these modules can enrich Indicators of Compromise (IOCs) with information from MISP and VirusTotal (VT), or upload EVTX files into Splunk. While IRIS can operate without any modules, it comes with default modules preinstalled. Additionally, users can configure more modules through the UI by navigating to Manage > Modules.

The system is shipped in Docker containers for streamlined installation and upgrades

The system is delivered in Docker containers, which simplifies the process of installation and upgrades through the use of Docker Compose.
 

Incident Response Investigation System (IRIS) Reviews

Write a Review

No reviews yet. Be the first to review this tool!

Write a Review

Share your experience with Incident Response Investigation System (IRIS) tool and help others make informed decisions.

Similar Tools

View All Operations Management
Wazuh
Free
Security Operations

Wazuh View Wazuh

Wazuh is a comprehensive open-source security monitoring platform designed to protect your digital infrastructure. It delivers robust threat detection, intrusion prevention, and anomaly analysis across your endpoints and cloud environments. By leveraging a lightweight agent and a powerful analysis engine, Wazuh automates the identification of vulnerabilities, misconfigurations, and malicious activities, while providing essential tools for incident response and compliance.

Real-time threat detection and intrusion prevention
Vulnerability detection and assessment
Configuration monitoring and compliance checks
TheHive Project
Free
Security Operations

TheHive Project View TheHive Project

TheHive Project is a robust, open-source Security Incident Response Platform (SIRP) engineered to streamline security operations for SOCs, CSIRTs, and CERTs. It enables seamless collaboration among analysts, facilitates detailed investigation through template-driven case management, and integrates with Cortex for automated analysis and response, empowering information security practitioners to swiftly manage and resolve security incidents.

Scalable and Open-Source Incident Response Platform
Seamless Collaboration for SOC/CSIRT Teams
Template-Driven Case Management and Task Creation
System Two Security
Free
Security Operations

System Two Security View System Two Security

System Two Security empowers Detection Engineering and Threat Hunting teams by leveraging advanced AI agents and assistants. Designed to streamline the entire detection lifecycle, System Two automates the processing of threat intelligence, creation of new detection rules, and meticulous organization of detection libraries. Our cutting-edge AI models accelerate the response to emergent threats, optimize detection efficacy, and enable faster adversary identification, bolstering your organization's cybersecurity posture.

Automated Detection Engineering
AI-driven Threat Intelligence Processing
Intelligent Detection Rule Generation
Sift
Free
Security Operations

Sift View Sift

The Sift Digital Trust Platform leverages live machine learning and a global trust network to proactively defend businesses and customers against all forms of fraud and abuse. By analyzing user behavior in real-time, Sift accurately identifies trusted individuals and potential threats, enabling businesses to tailor user experiences based on trust scores. This approach minimizes fraud, increases conversion rates, and builds consumer confidence in data security.

Real-time fraud detection and prevention
Live Machine Learning for accurate trust scoring
Global trust network for broader insights
Radiant Security
Free
Security Operations

Radiant Security View Radiant Security

Radiant Security empowers Security Operations Centers (SOCs) with a cutting-edge AI security co-pilot designed to fortify your defenses and streamline operations. Our intelligent platform automates alert triage to ensure no threat is overlooked, conducts deep investigations to uncover root causes and track evolving attacks, and accelerates incident response through automated containment and remediation guided by security best practices.

AI-Powered Alert Triage Automation
In-depth Incident Investigation
Root Cause Analysis
Network Intelligence
Free
Security Operations

Network Intelligence View Network Intelligence

Network Intelligence provides advanced, AI-driven cybersecurity solutions designed to fortify your organization's digital defenses. Leveraging the robust ADVISE framework, we offer end-to-end capabilities for assessing, designing, implementing, and continuously evolving your security posture. Our global team of over 600 dedicated security experts, with strategic offices worldwide, ensures personalized and effective partnership for businesses of all sizes and industries.

AI-Powered Cybersecurity Solutions
ADVISE Framework for comprehensive security lifecycle management
Global Network of 600+ Security Experts