Today we are very proud to release IRIS: github.com/dfir-iris/iris…. It is a collaborative platform designed for and by IR analysts. Developed and used by the Airbus Defence and Space Cyber CSIRT (special mention to the main dev, WhiteKernel). 1/4

New minor version of IRIS: 1.2.1 and the last one before the end of the year! \o/ Thanks Eric Capuano - Bsky: @eric.zip and wagga for your contributions :) And thanks everyone for your feedback ✌️ github.com/dfir-iris/iris…

Hey you want a real opensource application to follow your cases in #DFIR github.com/dfir-iris/iris… The team behind it's a real team doing dfir on real cases ! So don't hesitate to use it ! Perhaps a collaboration with #yeti !

Short writeup on incident response case management, DFIR-IRIS (by Airbus Defence and Space Cyber / WhiteKernel ) and a bit of MISP ( MISP (@[email protected]) ) #DFIR #CSIRT vanimpe.eu/2022/01/05/inc…

#DFIR_IRIS v1.3.0 is out, with a bunch of new features ! New timeline visualisations, batch uploads of IOCs and assets, shared links of case objects, quick timeline export, and much more. Check it out ! github.com/dfir-iris/iris…

I published a set of Python scripts that I use to integrate DFIR-IRIS , MISP (@[email protected]) and Timesketch #DFIR #CSIRT github.com/cudeso/dfir-ir…

The first version of the Python Client for #DFIR_IRIS is here ! You can now integrate IRIS and interact with it more easily. Almost everything you can do from the GUI can be done through the client. Try it out and give us your feedback ! github.com/dfir-iris/iris… #dfir

#DFIR_IRIS v1.4.0 is here ! 🎉 New great features introduced in this release: VT and MISP integrations, custom attributes for every case objects, hooks triggered on various events, dark theme, minimal timeline view and more. Check it out ! github.com/dfir-iris/iris… #dfir

The weekend starts with a new #DFIR_IRIS version ! 🎉 v1.4.3 brings updates and DB backups from the interface, IOCs and modification history in timeline events, custom icons for assets, UI/UX and speed improvements. And more ! github.com/dfir-iris/iris… #dfir

This week, we will attend to the French infosec conference SSTIC held in Rennes! We will give a talk (in French) Wednesday about IRIS. Check the schedule, there are many interesting talks 🔥 sstic.org/2022/programme/ #SSTIC #DFIR

Présentation de Solal Jacob sur TAP-IR github.com/tap-ir/present… #CoRIIN2022

Azure AD : PRT, PRT Cookie and Application Token ottersec.github.io/posts/azuretok… cc @ottersecx

Do you want to know more about #DFIR_IRIS modules? We just published the first part of a walkthrough to develop new modules, made way easier thanks to the module generator iris-skeleton-module. blog.dfir-iris.org/deep_dives/iri… #DFIR

This is my first contribution to IRIS blog. It gives an overview about modules, and tips on the development. Finally, it describes how to use our new module generator "iris-skeleton-module" based on cookiecutter. I hope it will help future contributions!

🚀 Introducing #DFIR_IRIS v2! 🎉 Our IR collaboration platform just got better: ✅ Group management, access control and LDAP ✅ Comments, MD editors & new reports formats ✅ New customers page and stats ✅ Improved integrations And much more! github.com/dfir-iris/iris…

When a Gozi botnet operator gets upset...

Is there a public Hall of Shame for nominating (otherwise reputable) projects that do "curl|bash" when you attempt to build them?

Le cloud computing

#reconbrx day2 !

Congratz! \o/ @[email protected]