Create customized IR playbooks aligned with NIST SP 800-61 for ransomware, data breaches, DDoS, supply chain compromise, and operational runbooks. Includes evidence preservation checklists, compliance guidance (GDPR, HIPAA, PCI-DSS), team roles, and export to PDF/Markdown