4sConsult / box4securityLinks
Open-source powered SIEM, Vulnerability Scanning, Host- & Network-IDS. Built upon Elastic Stack, OpenVAS, Suricata. Wrapped in a Python Flask web app.
☆15Updated 2 years ago
Alternatives and similar repositories for box4security
Users that are interested in box4security are comparing it to the libraries listed below
Sorting:
- ☆19Updated 3 years ago
- AIL project training materials☆31Updated last month
- ☆55Updated this week
- ☆16Updated 3 years ago
- Workflows for Shuffle☆23Updated 2 years ago
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆33Updated last year
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆44Updated last year
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 4 years ago
- A collection of dashboards, templates, API's and Power BI code for vulnerability management and analysis☆23Updated 4 months ago
- DNS Dashboard for hunting and identifying beaconing☆16Updated 4 years ago
- FIles and guides related to using Elasticstack as a SIEM☆12Updated 5 years ago
- Run Velociraptor on Security Onion☆38Updated 2 years ago
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆35Updated 2 years ago
- A SOC Analyst's tool to automate the investigation & validation of possible Indicators of Compromise (IOCs) and perform various tasks inc…☆26Updated 3 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 3 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆52Updated 2 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- Wazuh integration TheHive☆36Updated 2 years ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆29Updated 9 months ago
- Personal scripts☆15Updated 9 months ago
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆26Updated 5 months ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆30Updated 2 months ago
- A collection of awesome tools, software, libraries, learning tutorials & videos, frameworks, best practices and technical resources abou…☆52Updated 2 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- Open-source Fabric templates for cybersecurity and compliance☆21Updated 5 months ago
- Tools for Wazuh by Juan C. Tello☆14Updated 3 years ago
- ☆11Updated 4 years ago
- TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…☆32Updated last week
- ☆35Updated last year
- Wrap any binary into a cached webserver☆53Updated 3 years ago