EricGershman / auditd-examplesLinks
Collection of Auditd Examples and Presentations
☆86Updated 5 years ago
Alternatives and similar repositories for auditd-examples
Users that are interested in auditd-examples are comparing it to the libraries listed below
Sorting:
- Automatic firewall rule orchestator.☆83Updated 8 years ago
- Common Vulnerabilities and Exposures - Portal. Archived and now replaced by vulnerability-lookup.org☆86Updated 7 months ago
- ☆141Updated last year
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Basic Anomaly IDS capabilities with Python and Bro☆105Updated 7 years ago
- Scripts and integrations for OSSEC☆41Updated 9 years ago
- Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...☆72Updated 6 years ago
- The Auditd Framework logs and applies security policy to linux auditd data☆15Updated 7 years ago
- Dockerfiles for NSM tools☆84Updated 8 years ago
- Exfiltrate files via DNS☆95Updated 12 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 7 years ago
- The Official Github Repository of Daemonlogger☆22Updated 4 years ago
- BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN).☆109Updated 2 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch☆61Updated 8 years ago
- A RESTful API frontend for Stenographer☆54Updated 2 years ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆229Updated 4 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated 2 weeks ago
- Compare multiple log formats against malware reputation lists.☆88Updated 8 years ago
- **BETA** A simple buildscript for network security monitoring on RHEL/CentOS☆31Updated 8 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Python module for evaluation of AWS account best practices around incident handling readieness.☆55Updated 5 years ago
- Dashboards and loader for ROCK NSM dashboards☆49Updated 2 years ago
- Docker container for MISP☆96Updated 7 years ago
- Make TLS/SSL security mass scans with testssl.sh and import results into ElasticSearch☆110Updated 7 years ago
- Find ssh keys with no passwords and try them against a bunch of hosts.☆46Updated 10 years ago
- YETI is a TAXII implementation☆46Updated 6 years ago
- ☆49Updated 10 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated last year
- Honeypot log processor to create OTX Pulse entries☆28Updated last year
- Security Onion Elastic Stack☆46Updated 4 years ago