Question 1

How do I install the dependencies for this incident response plan template?

Accepted Answer

You need to install make, ruby-mustache, pandoc, and for PDF output, texlive packages. On Ubuntu/Debian, use apt-get commands as shown in the README, but on other systems, you may need to find equivalent packages or use WSL on Windows.

Question 2

What's the difference between this template and the NIST incident response guide?

Accepted Answer

This template provides a ready-to-customize structure based on industry best practices, including NIST guidelines, but it's more practical and directive, whereas NIST's guide is a comprehensive framework that requires more interpretation and effort to implement.

Question 3

Can I use this template if I only have Microsoft Word?

Accepted Answer

Yes, the project provides an example Word document in the examples directory that you can download and customize directly, but for full features like template variables, you'll need to use the markdown version with the tools.

Question 4

How to add a new playbook for a specific incident like phishing?

Accepted Answer

Create a new markdown file in the playbooks directory following the naming convention 'playbook-phishing.md', and structure it based on the existing playbooks, then update the playbooks/index.md to include it.

Question 5

Does this template work on Windows without WSL?

Accepted Answer

It's possible but challenging; the Makefile and dependencies are designed for Unix-like systems, so on native Windows, you'd need to install compatible versions of make, mustache, and pandoc, which might require additional setup or alternative tools.

Question 6

Incident response plan template vs. commercial tools like PagerDuty: which should I choose?

Accepted Answer

This template is free and highly customizable, ideal for organizations wanting control and a foundation based on open standards. Commercial tools offer automation, integration, and support, but at a cost and with less flexibility.

Counteractive Playbooks

What is Counteractive Playbooks?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions