Contains Logstash related content including tons of Logstash configurations
☆254Aug 25, 2021Updated 4 years ago
Alternatives and similar repositories for Logstash
Users that are interested in Logstash are comparing it to the libraries listed below
Sorting:
- ☆34Apr 29, 2021Updated 4 years ago
- ☆134Mar 21, 2024Updated 2 years ago
- Create actionable data from your Vulnerability Scans☆1,396Dec 27, 2022Updated 3 years ago
- ☆77Jun 25, 2019Updated 6 years ago
- Configuration files for the SOF-ELK VM☆1,723Jan 21, 2026Updated 2 months ago
- An analytical framework for network traffic and behavioral analytics☆456Dec 7, 2022Updated 3 years ago
- This is a repository for freq.py and freq_server.py☆217Feb 1, 2026Updated last month
- ☆50Aug 30, 2020Updated 5 years ago
- ☆226Nov 9, 2023Updated 2 years ago
- Example configuration files for Logstash☆44Oct 30, 2019Updated 6 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆17Sep 30, 2016Updated 9 years ago
- bro on debian with elasticsearch support☆24Mar 27, 2017Updated 8 years ago
- Snapshot, patch, health-check, and potentially roll-back Windows VMs☆34Feb 20, 2018Updated 8 years ago
- ☆33Nov 21, 2024Updated last year
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,501Jan 12, 2026Updated 2 months ago
- Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries☆460Feb 4, 2022Updated 4 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆65Oct 31, 2017Updated 8 years ago
- An analytical framework for network traffic and behavioral analytics☆22Feb 23, 2023Updated 3 years ago
- The Hunting ELK☆3,912Jun 1, 2024Updated last year
- A repository for using windows event forwarding for incident detection and response☆1,300Sep 8, 2025Updated 6 months ago
- ☆16Apr 16, 2017Updated 8 years ago
- ☆2,390Oct 14, 2023Updated 2 years ago
- An informational repo about hunting for adversaries in your IT environment.☆1,859Nov 17, 2021Updated 4 years ago
- Sysmon configuration file template with default high-quality event tracing☆5,430Jul 3, 2024Updated last year
- SIEM Logstash parsing for more than hundred technologies☆193Mar 3, 2026Updated 2 weeks ago
- Dashboards and loader for ROCK NSM dashboards☆49Mar 13, 2023Updated 3 years ago
- Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…☆882Nov 17, 2020Updated 5 years ago
- A framework for developing alerting and detection strategies for incident response.☆852Sep 8, 2025Updated 6 months ago
- Kibana 5 Templates for Suricata IDPS☆43May 30, 2018Updated 7 years ago
- Open-source framework to detect outliers in Elasticsearch events☆205May 22, 2023Updated 2 years ago
- Automated, Collection, and Enrichment Platform☆324Nov 14, 2019Updated 6 years ago
- ☆13Oct 7, 2019Updated 6 years ago
- ☆30Nov 15, 2018Updated 7 years ago
- A repository of sysmon configuration modules☆2,994Aug 21, 2024Updated last year
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Oct 12, 2018Updated 7 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Aug 3, 2019Updated 6 years ago
- Framework that sits on top of Splunk Enterprise Security to do auto-mitigation☆14Dec 29, 2014Updated 11 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collection☆33Aug 30, 2020Updated 5 years ago
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,921Jul 6, 2024Updated last year