gwen001
commented
1 month ago Issue correctly handled, tool is waiting for human validation.
Closed gwen001 closed 1 month ago
gwen001
commented
1 month ago Issue correctly handled, tool is waiting for human validation.
gwen001
commented
1 month ago Tool has been accepted by the team: https://offsec.tools/tool/grr
Thank you for your contribution!
[tags]defense,organizer,forensic[/tags] [short_descr]An incident response framework focused on remote live forensics.[/short_descr] [link] https://grr-doc.readthedocs.io/ [/link] [link] https://github.com/google/grr [/link] [long_descr] GRR Rapid Response is an incident response framework focused on remote live forensics.
The goal of GRR is to support forensics and investigations in a fast, scalable manner to allow analysts to quickly triage attacks and perform analysis remotely.
GRR consists of 2 parts: client and server.
GRR client is deployed on systems that one might want to investigate. On every such system, once deployed, GRR client periodically polls GRR frontend servers for work. “Work” means running a specific action: downloading file, listing a directory, etc.
GRR server infrastructure consists of several components (frontends, workers, UI servers, fleetspeak) and provides web-based graphical user interface and an API endpoint that allows analysts to schedule actions on clients and view and process collected data. [/long_descr] [image] https://raw.githubusercontent.com/gwen001/offsectools_www/main/tmp/88bad98341daf49ca0701a6ab8a4db29.png [/image] [image] https://raw.githubusercontent.com/gwen001/offsectools_www/main/tmp/44c079fb0f4bacc65462f5894a697f63.png [/image]