Contains Logstash related content including tons of Logstash configurations
☆254Aug 25, 2021Updated 4 years ago
Alternatives and similar repositories for Logstash
Users that are interested in Logstash are comparing it to the libraries listed below
Sorting:
- ☆34Apr 29, 2021Updated 4 years ago
- ☆134Mar 21, 2024Updated last year
- Create actionable data from your Vulnerability Scans☆1,397Dec 27, 2022Updated 3 years ago
- ☆77Jun 25, 2019Updated 6 years ago
- Configuration files for the SOF-ELK VM☆1,719Jan 21, 2026Updated last month
- An analytical framework for network traffic and behavioral analytics☆457Dec 7, 2022Updated 3 years ago
- This is a repository for freq.py and freq_server.py☆215Feb 1, 2026Updated 3 weeks ago
- ☆50Aug 30, 2020Updated 5 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆65Oct 31, 2017Updated 8 years ago
- ☆227Nov 9, 2023Updated 2 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆17Sep 30, 2016Updated 9 years ago
- ☆13Oct 7, 2019Updated 6 years ago
- bro on debian with elasticsearch support☆24Mar 27, 2017Updated 8 years ago
- ☆33Nov 21, 2024Updated last year
- Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries☆459Feb 4, 2022Updated 4 years ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,486Jan 12, 2026Updated last month
- ☆16Apr 16, 2017Updated 8 years ago
- ☆2,388Oct 14, 2023Updated 2 years ago
- Example configuration files for Logstash☆44Oct 30, 2019Updated 6 years ago
- Snapshot, patch, health-check, and potentially roll-back Windows VMs☆34Feb 20, 2018Updated 8 years ago
- Dashboards and loader for ROCK NSM dashboards☆49Mar 13, 2023Updated 2 years ago
- Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…☆883Nov 17, 2020Updated 5 years ago
- A repository for using windows event forwarding for incident detection and response☆1,296Sep 8, 2025Updated 5 months ago
- The Hunting ELK☆3,913Jun 1, 2024Updated last year
- An informational repo about hunting for adversaries in your IT environment.☆1,850Nov 17, 2021Updated 4 years ago
- Python script to automatically create sigma rules from The hive observables☆25Mar 17, 2019Updated 6 years ago
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Oct 12, 2018Updated 7 years ago
- Open-source framework to detect outliers in Elasticsearch events☆206May 22, 2023Updated 2 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Aug 3, 2019Updated 6 years ago
- Incident Response Methodologies☆1,018Aug 2, 2018Updated 7 years ago
- Sysmon configuration file template with default high-quality event tracing☆5,401Jul 3, 2024Updated last year
- A framework for developing alerting and detection strategies for incident response.☆841Sep 8, 2025Updated 5 months ago
- Open Source Security Events Metadata (OSSEM)☆1,288Feb 27, 2023Updated 3 years ago
- Ansible playbook for installing MineMeld on Linux☆47Mar 18, 2021Updated 4 years ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆456Jul 2, 2023Updated 2 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Aug 30, 2022Updated 3 years ago
- ☆30Nov 15, 2018Updated 7 years ago
- SIEM Logstash parsing for more than hundred technologies☆193Feb 20, 2026Updated last week
- A curated list of CTF frameworks, libraries, resources and softwares☆10Nov 11, 2015Updated 10 years ago