Hermes Agent
28 lines
836 B
Markdown
28 lines
836 B
Markdown
# GreySec Incident Response Pipeline
|
|
|
|
Automated incident response forensic collection and evidence management.
|
|
|
|
## Structure
|
|
|
|
- `forensic-collection/` - Live response scripts and evidence collection tools
|
|
- `chain-of-custody/` - Chain of custody tracking templates and automation
|
|
- `evidence-processing/` - Evidence processing and analysis workflows
|
|
- `ir-playbooks/` - Incident response playbooks by phase
|
|
- `documentation/` - IR procedures and runbooks
|
|
|
|
## Quick Start
|
|
|
|
```bash
|
|
# Clone the repository
|
|
git clone https://gsfiles.tail57cd.ts.net/greysec/ir-pipeline.git
|
|
|
|
# Run forensic collection (requires sudo)
|
|
sudo -S -p '' python3 forensic-collection/scripts/live_response.py --output ./evidence/
|
|
```
|
|
|
|
## Integration
|
|
|
|
Connects to GreySec's Supabase IR case tracking via `ir_cases` table.
|
|
See: https://greysec.supabase.co
|
|
test push
|