Intelligent SOC automation framework powered by LangGraph multi-agent workflows for alert triage, correlation, and incident response

SOC子引擎，基于agent-skills技术通过AI赋能SOC平台，对SOC告警进行研判、调查、响应。

AI-powered SIEM alert triage assistant for SOC analysts: classifies, prioritizes, and recommends response actions.

Hands-on cybersecurity portfolio featuring GRC, SOC/SIEM, Incident Response, and Automation projects. Includes risk assessments, Splunk log analysis, IR playbooks, and a full enterprise capstone case study.

Our reusable, modifiable prompts and simple agents that are included within the Arcanna platform and invokable via Arcanna's AI Assistant

SentinelForge: Autonomous SOC analyst platform with AI agents for alert triage, log correlation, threat hunting, and incident response.

OpsPilot Discord-native AI on-call team that triages alerts, creates safe PRs, and manages incidents automatically.

Hands-on SOC Analyst lab portfolio — alert triage, reporting, escalation, and workbook-driven investigations (30-day project)

SOC / DFIR investigations portfolio with hands-on lab cases covering SIEM alert triage, Phishing Analysis, Malware analysis, Endpoint detection, Network Analysis. Built to demonstrate practical SOC Analyst L1/L2 and DFIR skills.

🤖 Automate incident response with OpsPilot, your Discord-based AI on-call team that triages issues and deploys safe PRs in minutes.

Python CLI that ingests alerts from CSV, Splunk, or Elasticsearch; enriches source IPs via VirusTotal and Shodan; scores priority with a 6-factor weighted model; detects correlated incidents and MITRE ATT&CK kill chains; and generates a self-contained HTML analyst report.

SOC incident response simulation demonstrating alert triage, investigation steps, and incident documentation.

Blue Team investigations including browser threat hunting, phishing analysis, and SIEM alert triage. Saviva~

SOC Alert Triage Lab – Simulated SOC alert classification and triage using Python.

Python toolkit for SOC analysts - Log parsing, alert triage, hash checking & network analysis | Zero dependencies

A risk-based fraud alert triage system that scores transactions, prioritizes alerts by severity, and applies proportionate remediation actions to minimize financial loss while preserving customer experience.

🕵️♂️ Collect macOS forensic data fast with triagectl, a single binary tool featuring 26 collectors, automated analysis, and multiple export formats.

🚀 Optimize incident response with OpsPilot, a Discord-native AI that triages issues and deploys safe PRs in minutes, blending automation with human insight.