Intelligent SOC automation framework powered by LangGraph multi-agent workflows for alert triage, correlation, and incident response

SOC子引擎，基于agent-skills技术通过AI赋能SOC平台，对SOC告警进行研判、调查、响应。

AI-powered SIEM alert triage assistant for SOC analysts: classifies, prioritizes, and recommends response actions.

Hands-on cybersecurity portfolio featuring GRC, SOC/SIEM, Incident Response, and Automation projects. Includes risk assessments, Splunk log analysis, IR playbooks, and a full enterprise capstone case study.

Our reusable, modifiable prompts and simple agents that are included within the Arcanna platform and invokable via Arcanna's AI Assistant

SentinelForge: Autonomous SOC analyst platform with AI agents for alert triage, log correlation, threat hunting, and incident response.

OpsPilot Discord-native AI on-call team that triages alerts, creates safe PRs, and manages incidents automatically.

Hands-on SOC Analyst lab portfolio — alert triage, reporting, escalation, and workbook-driven investigations (30-day project)

SOC / DFIR investigations portfolio with hands-on lab cases covering SIEM alert triage, Phishing Analysis, Malware analysis, Endpoint detection, Network Analysis. Built to demonstrate practical SOC Analyst L1/L2 and DFIR skills.

🤖 Automate incident response with OpsPilot, your Discord-based AI on-call team that triages issues and deploys safe PRs in minutes.

SOC incident response simulation demonstrating alert triage, investigation steps, and incident documentation.

Python CLI that ingests alerts from CSV, Splunk, or Elasticsearch; enriches source IPs via VirusTotal and Shodan; scores priority with a 6-factor weighted model; detects correlated incidents and MITRE ATT&CK kill chains; and generates a self-contained HTML analyst report.

A risk-based fraud alert triage system that scores transactions, prioritizes alerts by severity, and applies proportionate remediation actions to minimize financial loss while preserving customer experience.

Blue Team investigations including browser threat hunting, phishing analysis, and SIEM alert triage. Saviva~

SOC Alert Triage Lab – Simulated SOC alert classification and triage using Python.

Python toolkit for SOC analysts - Log parsing, alert triage, hash checking & network analysis | Zero dependencies

🕵️♂️ Collect macOS forensic data fast with triagectl, a single binary tool featuring 26 collectors, automated analysis, and multiple export formats.

🚀 Optimize incident response with OpsPilot, a Discord-native AI that triages issues and deploys safe PRs in minutes, blending automation with human insight.