Graylog2 / graylog-guide-snort
How to send structured Snort IDS alert logs into Graylog
☆27Updated last year
Alternatives and similar repositories for graylog-guide-snort:
Users that are interested in graylog-guide-snort are comparing it to the libraries listed below
- brostash: Linux distribution based on Debian and focusing on network security events collection☆34Updated 4 years ago
- ☆23Updated 5 years ago
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆24Updated 6 years ago
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆44Updated 5 years ago
- The PCAP Analyzer for Splunk includes useful Dashboards to analyze network packet capture files from Wireshark or Network Monitor (.pcap)…☆43Updated last year
- Top DNS Measurement for Bro☆11Updated 4 years ago
- Snort rules to detect local malware, phishing, and adult content by inspecting DNS responses from OpenDNS☆52Updated 8 years ago
- ☆48Updated 4 years ago
- Detect HTTP stalling attacks like slowloris with Bro☆19Updated 7 years ago
- An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk☆23Updated 6 years ago
- How to Zeek Sysmon Logs!☆101Updated 3 years ago
- Simple block lists hub for PAN-OS DBL feature☆35Updated 6 years ago
- scan-detection policies for bro☆16Updated 2 months ago
- Scripts for Bro IDS and ELK Stack☆56Updated 9 years ago
- bro on debian with elasticsearch support☆24Updated 8 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- Vagrantfile and scripts for building a disposable OpenSOC Cluster☆29Updated 8 years ago
- A Docker container for Moloch based on minimal Debian☆26Updated 9 years ago
- collector/runner☆65Updated 2 weeks ago
- Python script that parses a Cisco IOS configuration file and generates a report to efficiently perform an IT Security Audit☆38Updated 5 years ago
- Porting Suricata to Bro signatures☆6Updated 5 years ago
- Snort IDS/IPS log analytics using the Elastic Stack.☆86Updated 3 years ago
- MS17-010 Windows SMB RCE -- Full subnet scanner☆24Updated 7 years ago
- Honeypot repo☆48Updated 9 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- WebUI of MineMeld☆43Updated 2 years ago
- brocon-15 scripts☆13Updated 8 years ago
- ☆20Updated 4 years ago
- BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to captu…☆19Updated 4 years ago
- MineMeld nodes for MISP☆19Updated last year