3CORESec / AWS-Mirror-ToolkitLinks
A set of tools and procedures for automating NSM and NIDS deployments in AWS
☆16Updated 4 years ago
Alternatives and similar repositories for AWS-Mirror-Toolkit
Users that are interested in AWS-Mirror-Toolkit are comparing it to the libraries listed below
Sorting:
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 3 years ago
- ☆32Updated 7 years ago
- misp-cloud - Cloud-ready images of MISP☆73Updated 3 years ago
- All-in-one bundle of MISP, TheHive and Cortex☆169Updated 2 years ago
- This script is used to generate some basic detections of the aws security services☆71Updated 3 years ago
- Recon Hunt Queries☆78Updated 4 years ago
- ☆34Updated 4 years ago
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago
- Community Sharing Repository for Carbon Black and Bit9 Platforms☆27Updated 3 years ago
- ☆55Updated 3 years ago
- Primary data pipelines for intrusion detection, security analytics and threat hunting☆87Updated 3 years ago
- A website and framework for testing NIDS detection☆57Updated 4 years ago
- Splunk TA for alert action to TheHive-project☆11Updated 5 years ago
- Security Monitoring Resolution Categories☆138Updated 3 years ago
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆27Updated 4 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆110Updated 5 years ago
- Cloud Templates and scripts to deploy mordor environments☆129Updated 4 years ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆138Updated 4 years ago
- automate your MISP installs☆68Updated 5 years ago
- CB API scripts for IR, administration, etc.☆32Updated 6 years ago
- Attack Range to test detection against nativel serverless cloud services and environments☆35Updated 4 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- A Splunk app to use MISP in background☆111Updated this week
- An ELK environment containing interesting security datasets.☆137Updated 5 years ago
- Expert Investigation Guides☆50Updated 4 years ago
- ☆18Updated 4 years ago
- Tools to automate and/or expedite response.☆115Updated last year
- This repository is created to add value to existing Network Security Monitoring solutions.☆43Updated 9 years ago
- ☆55Updated 4 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated last year