GRR Rapid Response is an incident response framework focused on remote live forensics.
It consists of a python client (agent) that is installed on target systems, and python server infrastructure that can manage and talk to clients.
The goal of GRR is to support forensics and investigations in a fast, scalable manner to allow analysts to quickly triage attacks and perform analysis remotely.
GRR is open source (Apache License 2.0) and is developed on GitHub: github.com/google/grr
- GitHub issues: github.com/google/grr/issues
- GRR Users mailing list: grr-users
- Follow us on twitter for announcements of GRR user meetups. We use a gitter chat room during meetups.
---
maxdepth: 2
---
What is GRR? <what-is-grr.md>
Quickstart <quickstart.md>
Installing and Running GRR <installing-and-running-grr/index.md>
Deploying GRR clients <deploying-grr-clients/index.md>
Investigating with GRR <investigating-with-grr/index.md>
Maintaining and tuning GRR deployment <maintaining-and-tuning/index.md>
GRR and Fleetspeak setup <fleetspeak/index.md>
Developing GRR <developing-grr/index.md>
Release Notes <release-notes.md>
F.A.Q <faq.md>
Publications <publications.md>