securitybot - Distributed alerting for the masses!

  •        17

Securitybot is an open-source implementation of a distributed alerting chat bot, as described in Ryan Huber's blog post. Distributed alerting improves the monitoring efficiency of your security team and can help you catch security incidents faster and more efficiently. We've tried to remove all Dropbox-isms from this code so that setting up your own instance should be fairly painless. It should be relatively easy to install the listed requirements in a virtualenv/Docker container and simply have the bot do its thing. We also provide a simple front end to dive through the database, receive API calls, and create custom alerts for the bot to reach out to people as desired.This guide runs through setting up a Securitybot instance as quickly as possible with no frills. We'll be connecting it to Slack, SQL, and Duo. Once we're done, we'll have a file that looks something like main.py.

https://github.com/dropbox/securitybot

Tags
Implementation
License
Platform

   




Related Projects

slack-ruby-bot - The easiest way to write a Slack bot in Ruby.

  •    Ruby

A generic Slack bot framework written in Ruby on top of slack-ruby-client. This library does all the heavy lifting, such as message parsing, so you can focus on implementing slack bot commands. It also attempts to introduce the bare minimum number of requirements or any sorts of limitations. It's a Slack bot boilerplate. If you are not familiar with Slack bots or Slack API concepts, you might want to watch this video.

bot - IRC, Slack, Telegram and RocketChat bot written in go

  •    Go

IRC, Slack & Telegram bot written in Go using go-ircevent for IRC connectivity, nlopes/slack for Slack and Syfaro/telegram-bot-api for Telegram.To see the bot in action, send a private message to go-bot on Freenode or join the channel #go-bot @ irc.freenode.org.

hubcommander - A Slack bot for GitHub organization management -- and other things too

  •    Python

A user-extendable Slack bot for GitHub organization management.HubCommander provides a chat-ops means for managing GitHub organizations. It creates a simple way to perform privileged GitHub organization management tasks without granting administrative or owner privileges to your GitHub organization members.

Elixir-Slack - Slack real time messaging and web API client in Elixir

  •    Elixir

This is a Slack Real Time Messaging API client for Elixir. You'll need a Slack API token which can be retrieved from the Web API page or by creating a new bot integration. Add Slack to your mix.exs dependencies function.

slack-poker-bot - A bot that deals Texas Hold'em games in Slack

  •    Javascript

A bot that turns Slack into a legitimate Texas Hold'em client. Start a game in any channel or private group with 2-10 players. PokerBot will deal hands, direct message players with their hole cards, query players for their action, determine the winning hand, and handle the pot. See it in action.


claudia-bot-builder - Create chat bots for Facebook Messenger, Slack, Amazon Alexa, Skype, Telegram, Viber, Line, GroupMe, Kik and Twilio and deploy to AWS Lambda in minutes

  •    Javascript

Claudia Bot Builder helps developers create and deploy chat-bots for various platforms in minutes to AWS Lambda. It simplifies the messaging workflows, automatically sets up the correct web hooks, and guides you through configuration steps, so that you can focus on important business problems and not have to worry about infrastructure code. This code is enough to operate bots for all supported platforms. Claudia Bot Builder automatically parses the incoming messages into a common format, so you can handle it easily. It also automatically packages the response into the correct message template for the requesting bot, so you do not have to worry about individual bot protocols.

slack-meme - A Meme Bot for Slack.

  •    Python

Post memes to any of your Slack channels with a slash command.Hone your meme skills privately by practicing in the slackbot channel.

slack-jira-plugin - A Slack plugin that watches channels for messages about JIRA and acts accordingly

  •    Javascript

Write your own configuration file (config-example.js) is a good starting point for building your own. This will launch the bot in your terminal based on provided configuration.

slack-invite-automation - A tiny web application to invite a user into your slack team.

  •    Javascript

A tiny web application to invite a user into your Slack team. Inspired by How I hacked Slack into a community platform with Typeform and Socket.io's Slack page.

slack-pokemon - A bot for having Pokemon battles in Slack.

  •    Javascript

This is a bot for having Pokemon battles within Slack. It was originally built at Vox Media's product hackathon, Vax. Read more about it here. This is written in Node.js. After installing Node, you also need to install npm and Redis.

django-DefectDojo - DefectDojo is an open-source application vulnerability correlation and security orchestration tool

  •    Python

DefectDojo is a security program and vulnerability management tool. DefectDojo allows you to manage your application security program, maintain product and application information, schedule scans, triage vulnerabilities and push findings into defect trackers. Consolidate your findings into one source of truth with DefectDojo. Try out DefectDojo in our testing environment.

st2 - StackStorm (aka "IFTTT for Ops") is event-driven automation commonly used for auto-remediation, security responses, facilitated troubleshooting, complex deployments, and more

  •    Python

StackStorm is a platform for integration and automation across services and tools, taking actions in response to events. Learn more at www.stackstorm.com.StackStorm is a platform for integration and automation across services and tools. It ties together your existing infrastructure and application environment so you can more easily automate that environment -- with a particular focus on taking actions in response to events.

will - Will is a simple, beautiful-to-code bot for slack, hipchat, and a whole lot more.

  •    Python

Meet Will. Will is the friendliest, easiest-to-teach bot you've ever used. He works on Slack, Hipchat, Rocket.chat, and more - so you can build your bot without platform lock-in.

SlackKit - Build Slack apps, in Swift

  •    Swift

SlackKit makes it easy to build Slack apps in Swift. It's intended to expose all of the functionality of Slack's Real Time Messaging API as well as the web APIs that are accessible to bot users. SlackKit also supports Slack’s OAuth 2.0 flow including the Add to Slack and Sign in with Slack buttons, incoming webhooks, slash commands, and message buttons.

vulnreport - Open-source pentesting management and automation platform by Salesforce Product Security

  •    HTML

Vulnreport is a platform for managing penetration tests and generating well-formatted, actionable findings reports without the normal overhead that takes up security engineer's time. The platform is built to support automation at every stage of the process and allow customization for whatever other systems you use as part of your pentesting process. Vulnreport was built by the Salesforce Product Security team as a way to get rid of the time we spent writing, formatting, and proofing reports for penetration tests. Our goal was and continues to be to build great security tools that let pentesters and security engineers focus on finding and fixing vulns.

BotBuilder - The Microsoft Bot Builder SDK is one of three main components of the Microsoft Bot Framework

  •    CSharp

The Microsoft Bot Framework provides just what you need to build and connect intelligent bots that interact naturally wherever your users are talking, from text/sms to Skype, Slack, Office 365 mail and other popular services.The Microsoft Bot Builder SDK is one of three main components of the Microsoft Bot Framework. It is a powerful, easy-to-use framework that provides a familiar way for .NET and Node.js developers to develop bots.

Scumblr - Web framework that allows performing periodic syncs of data sources and performing analysis on the identified results

  •    Ruby

We're starting to change directions with our security automation approach and are actively looking for a maintainer for the Scumblr project. We're going to leave Scumblr code online but are not planning on adding any new features or addressing open issues and pull requests. If you are interested in maintaining this project, please reach out to me (sbehrens@netflix.com). Scumblr is a web application that allows performing periodic syncs of data sources (such as Github repositories and URLs) and performing analysis (such as static analysis, dynamic checks, and metadata collection) on the identified results. Scumblr helps you streamline proactive security through an intelligent automation framework to help you identify, track, and resolve security issues faster.

slack-ruby-client - A Ruby and command-line client for the Slack Web and Real Time Messaging APIs.

  •    Ruby

A Ruby client for the Slack Web and RealTime Messaging APIs. Comes with a handy command-line client, too. If you are not familiar with these concepts, you might want to watch this video. You're reading the documentation for the next release of slack-ruby-client. Please see the documentation for the last stable release, v0.12.0 unless you're integrating with HEAD. See UPGRADING when upgrading from an older version.

botbuilder-dotnet - The Microsoft Bot Framework provides what you need to build and connect intelligent bots that interact naturally wherever your users are talking, from text/sms to Skype, Slack, Office 365 mail and other popular services

  •    CSharp

This repository contains code for the .NET version of the Microsoft Bot Builder SDK. The Bot Builder SDK v4 is the latest SDK for building bot applications. It is in Preview state and is being actively developed. Production bots should continue to be developed using the v3 SDK. In addition to the .NET SDK, Bot Builder supports creating bots in other popular programming languages like JavaScript, Python, and Java.

python-rtmbot - A framework for receiving and interacting with events from Slack's RTM API

  •    Python

A Slack bot written in Python that connects via the RTM API.Python-rtmbot is a bot engine. The plugins architecture should be familiar to anyone with knowledge of the Slack API and Python. The configuration file format is YAML.