Popularity
2.0
Stable
Activity
7.4
Declining
32
5
9

Description

SOCless is a serverless framework built to help security teams easily automate their incident response and operations workflows.

Programming language: Python
Tags: Security     Automation     Security Auditing    

SOCless alternatives and similar tools

Based on the "Automation" category

Do you think we are missing an alternative of SOCless or a related project?

Add another 'Automation' Tool

README

SOCless - serverless security orchestration, automation and response

SOCless is a serverless framework built to help security teams easily automate their incident response and operations workflows.

Overview

SOCless uses the AWS Step Functions and AWS Lambda services to execute user-defined workflows. The workflows, called Playbooks, are defined as JSON objects and triggered by real-time alerts from data sources or AWS CloudWatch schedules.

Features

  • Responds to real-time or scheduled events
  • Orchestrates existing security tools into workflows using AWS Lambda functions written in Python 3
  • Interact with humans as part of automated workflows and adapt to their responses
  • Static IP address that can be whitelisted to internal resources
  • Rapid automation development life-cycle courtesy of reusable, modular and shareable plugins
  • Infrastructure and response workflows deploy as code using The Serverless Framework
  • Serverless design has low cost, low operational overhead, and scales effortlessly

Ready? Check out the docs!

Join our community Slack workspace