A curated selection of essential tools for investigation, detection, and analysis
Welcome to the Open Source & Tools page — a collection of the best open source tools I use or recommend for CERT, SOC, CTI, or forensic operations. Each tool is presented with hands-on feedback, deployment guides, or real-world use cases.
📌 Objective: Empower teams to adopt robust, sustainable solutions without relying on commercial products.
🔧 What you’ll find here:
- Tools for Cyber Threat Intelligence (MISP, OpenCTI, etc.)
- Incident response and digital forensic solutions
- Platforms for log collection and enrichment
- Custom scripts and reproducible setups
- Inter-tool integrations (e.g., TheHive ↔ Cortex ↔ MISP)
- Ready-to-use dashboards for Kibana, Grafana, etc.
- Automated monitoring tools (RSS feeds, CVE alerts, dark web crawlers…)
📚 Available articles:
2025
