Incident-Playbook
Incident-Playbook copied to clipboard
GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
- https://github.com/austinsonger/Incident-Playbook/blob/main/Playbooks/MITRE-ATTACK/Execution/T1059.001%20-%20PowerShell.md ### Checklist - [ ] Investigate - [ ] Remediate - [ ] Communicate - [ ] Recover
- https://github.com/austinsonger/Incident-Playbook/blob/main/Playbooks/MITRE-ATTACK/Execution/T1059%20Command%20and%20Scripting%20Interpreter.md ### Checklist - [ ] Investigate - [ ] Remediate - [ ] Communicate - [ ] Recover
https://github.com/austinsonger/Incident-Playbook/blob/main/Playbooks/MITRE-ATTACK/Impact/T1490-Inhibit-System-Recovery.md ### Checklist - [ ] Investigate - [ ] Remediate - [ ] Communicate - [ ] Recover
https://github.com/austinsonger/Incident-Playbook/blob/main/Playbooks/MITRE-ATTACK/Impact/T1489-Service-Stop.md ### Checklist - [ ] Investigate - [ ] Remediate - [ ] Communicate - [ ] Recover
https://github.com/austinsonger/Incident-Playbook/blob/main/Playbooks/MITRE-ATTACK/Impact/T1485-Data-Destruction.md ### Checklist - [ ] Investigate - [ ] Remediate - [ ] Communicate - [ ] Recover
- https://github.com/austinsonger/Incident-Playbook/blob/main/Playbooks/MITRE-ATTACK/Initial%20Access/T1566.002%20-%20Spearphishing%20Link.md ### Checklist - [ ] Investigate - [ ] Remediate - [ ] Communicate - [ ] Recover
- https://github.com/austinsonger/Incident-Playbook/blob/main/Playbooks/MITRE-ATTACK/Initial%20Access/T1566.001-%20Spearphishing%20Attachment.md ### Checklist - [ ] Investigate - [ ] Remediate - [ ] Communicate - [ ] Recover
- https://github.com/austinsonger/Incident-Playbook/blob/main/Playbooks/MITRE-ATTACK/Initial%20Access/T1566.003%20-%20Spearphishing%20via%20Service.md ### Checklist - [ ] Investigate - [ ] Remediate - [ ] Communicate - [ ] Recover
### Checklist - [ ] Investigate - [ ] Remediate - [ ] Communicate - [ ] Recover
### Checklist - [ ] Investigate - [ ] Remediate - [ ] Communicate - [ ] Recover