CiscoSE / SnortBlocklistImporter
This is a script to import Cisco Talos's IP Blacklist into a Tag (Host Group) within Stealthwatch. This will also optionally create a Custom Security Event (CSE) to alert on traffic to the blacklisted IPs.
☆11Updated last year
Alternatives and similar repositories for SnortBlocklistImporter:
Users that are interested in SnortBlocklistImporter are comparing it to the libraries listed below
- ☆24Updated 6 years ago
- Python script that parses a Cisco IOS configuration file and generates a report to efficiently perform an IT Security Audit☆38Updated 5 years ago
- Palo Alto Networks Rule Parser☆16Updated 8 years ago
- Wiki for general information about repositories☆23Updated 6 years ago
- Tool that assists in migrating firewall rules from Cisco to Checkpoint. Will optimize rules for you (rationalization, reuse merging, etc.…☆21Updated 4 years ago
- ☆11Updated 9 years ago
- Cisco AMP threat hunting scripts☆14Updated 5 months ago
- A tool for bulk URL queries against Palo Alto Networks' PAN-DB cloud database☆18Updated last year
- Create an Excel Spreadsheet from your firewall rules in Palo Alto Networks Panorama☆13Updated 8 years ago
- Documentation and Tools for Cisco's PSIRT openVuln API☆108Updated last year
- Python script utilizing Cisco Firepower Management APIs☆18Updated 8 years ago
- Offline config file scanner to test for STIG compliance with flexible rule sets☆47Updated 5 years ago
- ☆12Updated 5 years ago
- ☆60Updated 3 months ago
- Sync /etc/hosts.deny with Cisco Talos IP Blacklist☆11Updated 6 years ago
- DirectFire Firewall Converter - Network Security, Next-Generation Firewall Configuration Conversion, Firewall Syntax Translation and Fire…☆55Updated 3 years ago
- Repository with logstash, elasticsearch and kibana configs. Palo Alto, Juniper, BlueCoat, etc.☆18Updated 9 months ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 4 years ago
- Official Palo Alto Networks MineMeld docker☆17Updated 5 years ago
- Palo Alto powershell☆40Updated 2 years ago
- ruby library and executable to (de)crypt various router/switch password (IOS, NXOS, JunOS)☆17Updated last year
- MineMeld nodes for MISP☆19Updated last year
- This script provides a Python library with methods to authenticate to various sources of threat intelligence and query IPs for the latest…☆18Updated last month
- WebUI of MineMeld☆43Updated 2 years ago
- Incident Response Network Tools☆24Updated 3 years ago
- Convert Fortigates "diagnose sniffer" output to pcap files☆34Updated 4 years ago
- ☆32Updated 2 years ago
- incident response scripts☆19Updated 6 years ago
- FTD Ansible module☆40Updated 2 years ago
- useful tools for working with VIRL☆45Updated 6 years ago