soc_chef

Security Operations Chef

The idea here is try see if there is some way to bridge the gap between:

Reactive Orgs that either do not have Policies, Processes and Procedures or ones that have documents but that are shelfware or not relevent or followed when it comes to task.

(these should be treated as proof of concepts/experiments, you might find them useful, you might find bugs/issues - feel free to log issues)

🗒️ Cyber Security Policy Generation Tool - High Level

💻 Device Security Policy Generation Tool - High Level

🗒️ Cyber Security Roadmap & Budget Planner

🏥 Generic Cyber Incident Response Plan

📧 Business Email Compromise (BEC) Response Plan

✏️ Penetration Test Scoping

🧑‍🤝‍🧑 Joiners, Movers, Leavers (JML)

🇬🇧 CAF Planning Assessment - very experimental

🇬🇧 CAF 3.2 Assessment PoC- very experimental

🔐 Risk Assessment - v1

⚡️ Threat Model - STRIDE

⚡️ Threat Model - PASTA

⚡️ Threat Model - DREAD

🎨 Kill Chain Analysis - MITRE ATT&CK

🎨 Diamond Model Creator

☕ Buy me a coffee

Copyright (c) Xservus Limited Created by mRr3b00t

Version 0.23 - Experimental - Use at own risk