4sConsult / box4securityLinks
Open-source powered SIEM, Vulnerability Scanning, Host- & Network-IDS. Built upon Elastic Stack, OpenVAS, Suricata. Wrapped in a Python Flask web app.
☆16Updated 3 years ago
Alternatives and similar repositories for box4security
Users that are interested in box4security are comparing it to the libraries listed below
Sorting:
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆49Updated last year
- Docker configurations for TheHive, Cortex and 3rd party tools☆128Updated 2 years ago
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆112Updated 3 years ago
- ☆40Updated 2 years ago
- Wazuh integration TheHive☆40Updated 2 years ago
- ☆20Updated 2 years ago
- A collection of dashboards, templates, API's and Power BI code for vulnerability management and analysis☆24Updated 10 months ago
- Run Velociraptor on Security Onion☆40Updated 3 years ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆49Updated 6 months ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆31Updated last year
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆32Updated last month
- ☆20Updated 4 years ago
- OpenAEV Docker deployment helpers☆26Updated this week
- Collection of Dashboards for Threat Hunting and more!☆70Updated 5 years ago
- Cybersecurity Incident Response Plan☆109Updated 5 years ago
- Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General☆24Updated 4 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆71Updated 4 years ago
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆50Updated 3 months ago
- CrowdStrike Falcon Queries For Advanced Threat Detection☆27Updated 9 months ago
- A SOC Analyst's tool to automate the investigation & validation of possible Indicators of Compromise (IOCs) and perform various tasks inc…☆28Updated 3 years ago
- Resources, tools and utilities about Threat Intelligence☆74Updated 2 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- ☆56Updated 3 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆59Updated 3 years ago
- AIL project training materials☆38Updated 5 months ago
- A collection of tips for using MISP.☆75Updated last year
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆80Updated 2 months ago
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆35Updated 3 years ago
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆103Updated 2 years ago
- Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Group☆86Updated 11 months ago