Cirrus is an open-source Python-based tool designed to streamline Google Cloud forensic evidence collection. It can streamline environment access and evidence collection in investigations involving Google Workspace and GCP. The tool simplifies incident response activities and enhances an organization’s security posture. Key features The main capabilities of Cirrus include the following: Aggregate logs and configurations from different Google Cloud components. Access user-specific data in Gmail. Automate access prerequisites in preparation for evidence collection. Obtain significant … More
The post Cirrus: Open-source Google Cloud forensic collection appeared first on Help Net Security.