CrowdStrike has released a free incident response toolkit called CrowdResponse. CrowdStrike is a community-based platform that may eventually support as many as 25 software modules. The toolkit includes three modules: @dirtlist, @pslist, and @yara. The new toolkit will make it easier for enterprises to collect incident response data and compare it to threat intelligence “indicators” that are associated with particular groups of attackers, CrowdStrike CEO George Kurtz says. When CrowdStrike identifies a new group of threat actors, enterprises can use CrowdResponse to determine whether those threat actors might be at work in their environments.”]
Source: https://www.darkreading.com/attacks-breaches/crowdstrike-launches-free-toolkit-for-incident-response