Cargill / OpenSIEM-Logstash-ParsingView external linksLinks
SIEM Logstash parsing for more than hundred technologies
☆193Jan 23, 2026Updated 3 weeks ago
Alternatives and similar repositories for OpenSIEM-Logstash-Parsing
Users that are interested in OpenSIEM-Logstash-Parsing are comparing it to the libraries listed below
Sorting:
- Converts Netwitness log parser configuration to Logstash configuration☆20Sep 10, 2020Updated 5 years ago
- Python script to automatically create sigma rules from The hive observables☆25Mar 17, 2019Updated 6 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆40May 18, 2022Updated 3 years ago
- Security event correlation engine for ELK stack☆448Jun 26, 2024Updated last year
- A list of curated OpenSearch links☆11May 17, 2024Updated last year
- ☆11Apr 22, 2022Updated 3 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆159Mar 10, 2025Updated 11 months ago
- Example configuration files for Logstash☆44Oct 30, 2019Updated 6 years ago
- This repository contains a few examples of actions that can be added to rules within Elastic Security.☆24Feb 6, 2025Updated last year
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Nov 3, 2025Updated 3 months ago
- Open Distro Kibana Notebooks☆21Jul 27, 2022Updated 3 years ago
- ☆38Oct 23, 2019Updated 6 years ago
- SIEM Tactics, Techiques, and Procedures☆694Feb 3, 2026Updated last week
- Because automated source of truth can be handy sometimes ;-)☆14Updated this week
- Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …☆28Jul 30, 2024Updated last year
- Fortinet products logs to Elasticsearch☆102Feb 5, 2026Updated last week
- Contains Logstash related content including tons of Logstash configurations☆254Aug 25, 2021Updated 4 years ago
- 📈 PerfTop: A client for the OpenSearch Performance Analyzer☆17Mar 31, 2025Updated 10 months ago
- Collection of Jupyter Notebook for Threat Hunting and Blue Team Purposes☆22Jun 15, 2022Updated 3 years ago
- This project is a SIEM with SIRP and Threat Intel, all in one.☆461Nov 20, 2024Updated last year
- An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced sec…☆206Apr 3, 2025Updated 10 months ago
- Elasticsearch alerting made simple.☆578Feb 1, 2026Updated last week
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆54Sep 16, 2025Updated 4 months ago
- Filebeat module for Squid access.log + Kibana dashboards. ELK 7.x☆17Sep 19, 2020Updated 5 years ago
- Logstash Editor for Visual Studio Code☆17Jan 19, 2026Updated 3 weeks ago
- ☆2,489Feb 6, 2026Updated last week
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆20May 25, 2022Updated 3 years ago
- Ghi chép về snort, suricata, SIEM, OSSEC ...☆11Dec 4, 2018Updated 7 years ago
- Azure Deployment Templates for Mandiant Managed Huning☆12Jun 1, 2023Updated 2 years ago
- OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings☆22Aug 13, 2024Updated last year
- Create actionable data from your Vulnerability Scans☆1,396Dec 27, 2022Updated 3 years ago
- This is a script to import Cisco Talos's IP Blacklist into a Tag (Host Group) within Stealthwatch. This will also optionally create a Cu…☆11May 22, 2023Updated 2 years ago
- Next Gen Nagios UI☆17Jul 14, 2014Updated 11 years ago
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆613Dec 8, 2025Updated 2 months ago
- ☆24Mar 12, 2025Updated 11 months ago
- Transform Linux Audit logs for SIEM usage☆811Dec 18, 2025Updated last month
- ☆41Aug 26, 2023Updated 2 years ago
- Elastic Common Schema☆1,099Feb 5, 2026Updated last week
- A full-featured command line interface (CLI) for Open Distro.☆24Jan 11, 2022Updated 4 years ago