Alir3z4 / ansible-suricata
An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.
☆15Updated 3 years ago
Alternatives and similar repositories for ansible-suricata:
Users that are interested in ansible-suricata are comparing it to the libraries listed below
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- setup zeek, previously Bro IDS☆18Updated 3 months ago
- Build Automated Machine Images for MISP☆28Updated last year
- ☆12Updated 5 years ago
- Very basic CLI SIEM (Security Information and Event Management system).☆36Updated 6 years ago
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆24Updated 6 years ago
- Generic Signature Format for SIEM Systems☆14Updated 3 years ago
- ☆33Updated 3 years ago
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆53Updated 3 months ago
- ☆34Updated 3 years ago
- Scripts used to create ISO installers of ROCK for offline installation.☆10Updated 2 years ago
- Workflows for Shuffle☆21Updated 2 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆17Updated 8 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆38Updated 2 years ago
- Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…☆16Updated 3 years ago
- Suricata rule and intel index☆31Updated 3 months ago
- ☆15Updated 5 years ago
- Example Suricata rules implementing some of my detection tactics☆20Updated 2 years ago
- ☆48Updated this week
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Updated 3 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Top DNS Measurement for Bro☆11Updated 4 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- WebUI of MineMeld☆43Updated last year
- Learn about a network from a pcap file or reading from an interface☆28Updated 11 months ago
- This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup…☆15Updated 4 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- automate your MISP installs☆66Updated 4 years ago