Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
☆155Mar 6, 2024Updated 2 years ago
Alternatives and similar repositories for graylog-plugin-threatintel
Users that are interested in graylog-plugin-threatintel are comparing it to the libraries listed below
Sorting:
- Stream Lookup function for GrayLog2 Pipeline Processor☆14Oct 1, 2021Updated 4 years ago
- [DEPRECATED] Graylog Pipeline Message Processor Plugins☆21Oct 13, 2020Updated 5 years ago
- How to send Windows EventLogs into Graylog☆20Oct 20, 2025Updated 5 months ago
- Manage log collectors through Graylog☆277Updated this week
- Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into …☆822Nov 5, 2023Updated 2 years ago
- Graylog plugin to record internal logs of Graylog efficiently instead of sending them over the network☆12Jan 31, 2018Updated 8 years ago
- ☆36Dec 13, 2023Updated 2 years ago
- ☆16Dec 13, 2023Updated 2 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Jan 16, 2018Updated 8 years ago
- ☆16May 13, 2021Updated 4 years ago
- Metasploit automation. Why work when a minion can do it?☆21May 9, 2017Updated 8 years ago
- [DEPRECATED] Elastic Beats Input plugin for Graylog☆18Mar 15, 2019Updated 7 years ago
- Credentials catching honeypot☆388May 21, 2024Updated last year
- Several bundled Graylog plugins to integrate with different AWS services like CloudTrail and FlowLogs.☆92Apr 3, 2024Updated last year
- Official Graylog Docker image☆426Mar 4, 2026Updated 2 weeks ago
- Pfsense Logs Parsed by Graylog☆87Jul 13, 2018Updated 7 years ago
- A keystroke / terminal logger for Linux.☆217Jul 10, 2024Updated last year
- CLI tool for graylog-project☆25Mar 11, 2026Updated last week
- Maps process creation logged by Sysmon uses Google Org Chart API☆23Mar 5, 2016Updated 10 years ago
- Aggregates plugin for Graylog☆54Jan 9, 2019Updated 7 years ago
- Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…☆882Nov 17, 2020Updated 5 years ago
- A reverse shell with terminal support, data tunneling, and advanced pivoting capabilities.☆470Jul 10, 2024Updated last year
- A collection of scripts which may come in handy during your freedom fighting activities.☆412May 8, 2023Updated 2 years ago
- Basic Anomaly IDS capabilities with Python and Bro☆105Feb 27, 2018Updated 8 years ago
- Issues to consider when planning a red team exercise.☆14Aug 23, 2017Updated 8 years ago
- ☆12Mar 24, 2018Updated 7 years ago
- A repository for using windows event forwarding for incident detection and response☆1,300Sep 8, 2025Updated 6 months ago
- Icinga/Nagios check to monitor Graylog2 stream alerts☆16Nov 3, 2016Updated 9 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.☆38Jan 8, 2023Updated 3 years ago
- Package storage for packages served through the package registry service☆10Jan 27, 2023Updated 3 years ago
- Simple backend to query DNS-based Blackhole Lists.☆29Jun 1, 2016Updated 9 years ago
- A repository for using osquery for incident detection and response☆882Sep 8, 2025Updated 6 months ago
- A lightweight tool to score network traffic and flag anomalies☆123Aug 7, 2024Updated last year
- All my slides for any talks☆23Oct 13, 2024Updated last year
- Alert notification plugin for Graylog to generate log messages from alerts☆27Jan 14, 2026Updated 2 months ago
- Learn you a book for some infosec good☆62Dec 5, 2019Updated 6 years ago
- A Yara rule generator for finding related samples and hunting☆162Sep 11, 2022Updated 3 years ago
- Triage automation for suspect URLs☆13Jul 23, 2019Updated 6 years ago
- Alert condition plugin for Graylog to perform aggregation☆21Jan 8, 2023Updated 3 years ago