Python client for DFIR-IRIS

(Unofficial) Wazuh integration to send alerts to IRIS.

🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS through playbook automation and seamless integrations. Easily extensible and in active development. Join us in building a tool geared towards enhancing security efficiency!

DFIR IRIS Case templates

SECUBIAN is a French Linux distribution focused on evidence processing during Incident Response.

IRIS module for integration with OpenCTI

Wazuh Alert Triage & Escalation Playbook: Wazuh + Shuffle + IRIS + Discord/Gmail 🛡️

Cloned from https://github.com/dfir-iris/iris-web

iris-smartxdr-module is a IRIS pipeline/processor module created with https://github.com/dfir-iris/iris-skeleton-module

CyberFortress-SmartXDR-Core provides the central AI-driven intelligence layer for the CyberFortress Intelligent SOC Ecosystem. It delivers alert triage, IOC enrichment, MITRE mapping, and automated response logic through a unified Flask-based AI gateway.

iris-intelowl-module-2 is a customized and enhanced version of the original iris-intelowl-module, developed by the CyberFortress Lab for integration within the internal SOC ecosystem.

Building a complete Open-Source SIEM/SOC stack 🛡️. The stack integrates powerful tools for threat detection, incident response, threat intelligence, and visualization — providing a comprehensive environment for cybersecurity monitoring and analysis.

iris-misp-pusher is a IRIS pipeline/processor module created with https://github.com/dfir-iris/iris-skeleton-module Copyright 2025, iris-misp-pusher under the License MIT

DFIR-IRIS module ingesting malware into MWDB

🏠 Home Lab SOC Open Source com IA

This batch script automates the deployment and management of the DFIR-IRIS web application using Docker on Windows