Skip to content

Commit e7fafaf

Browse files
cur1y-devcur1y-dev
authored
Update README.md
Signed-off-by: ANDRI ANDRI <47277287+lamcodeofpwnosec@users.noreply.github.com>
1 parent eb2acad commit e7fafaf

File tree

1 file changed

+74
-2
lines changed

1 file changed

+74
-2
lines changed

README.md

Lines changed: 74 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,2 +1,74 @@
1-
# incident-response-toolkit
2-
The Incident Response Toolkit is a comprehensive suite of tools designed for cybersecurity professionals to effectively respond to and investigate security incidents. This toolkit combines advanced forensics capabilities, automated analysis tools, and incident management features to streamline the incident response process.
1+
# Incident Response Toolkit
2+
3+
![License](https://img.shields.io/badge/license-MIT-blue)
4+
![Python Version](https://img.shields.io/badge/python-3.10-blue)
5+
![Platform](https://img.shields.io/badge/platform-linux%20%7C%20windows%20%7C%20macos-lightgrey)
6+
7+
**Incident Response Toolkit** adalah rangkaian alat otomatisasi untuk menangani insiden keamanan siber, yang dirancang untuk membantu tim respons insiden (IRT) dalam pengumpulan bukti, analisis, dan pelaporan.
8+
9+
## 🚀 Fitur Utama
10+
11+
- **Pengumpulan Bukti**
12+
- **Memory Dump**: Mengambil snapshot memori aktif sistem.
13+
- **Disk Imaging**: Membuat citra disk yang dapat digunakan untuk analisis forensik.
14+
15+
- **Analisis Insiden**
16+
- Deteksi IOC (Indicator of Compromise) secara otomatis.
17+
- Modul deteksi dan pengelompokan ancaman.
18+
19+
- **Pelaporan**
20+
- Membuat laporan forensik terstruktur untuk kebutuhan dokumentasi.
21+
22+
## 🛠️ Instalasi
23+
Pastikan Anda telah menginstal **Python 3.10+** di sistem Anda.
24+
25+
1. Clone repository:
26+
```bash
27+
git clone https://github.com/defconpro/incident-response-toolkit.git
28+
cd incident-response-toolkit
29+
```
30+
2. Buat virtual environment (opsional, tetapi disarankan):
31+
```
32+
python3 -m venv venv
33+
source venv/bin/activate # Untuk Linux/MacOS
34+
.\venv\Scripts\activate # Untuk Windows
35+
```
36+
3. Instal dependensi:
37+
```
38+
pip install -r requirements.txt
39+
```
40+
## ⚡ Penggunaan
41+
Menjalankan Toolkit Jalankan scripts utama:
42+
```
43+
python3 main.py
44+
```
45+
### Modul yang Tersedia
46+
- **Memory Dump**
47+
- `python3 -m evidence_collector.memory_dump`
48+
- **Disk Imaging**
49+
- `python3 -m evidence_collector.disk_imaging`
50+
- IOC Detection
51+
- `python3 -m analysis_engine.ioc_detection`
52+
53+
## 🧩 Struktur Direktori
54+
```
55+
incident-response-toolkit/
56+
├── analysis_engine/
57+
│ ├── ioc_detection.py
58+
├── evidence_collector/
59+
│ ├── disk_imaging.py
60+
│ ├── memory_dump.py
61+
├── reporting_module/
62+
│ ├── generate_report.py
63+
├── main.py
64+
├── requirements.txt
65+
└── README.md
66+
```
67+
68+
Dibuat dengan ❤️ oleh [M Faridl Romadani](https://github.com/zafranrayyan)
69+
70+
71+
72+
73+
74+

0 commit comments

Comments
 (0)