HKcyberstark/TI_Mod external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

HKcyberstark/TI_Mod

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/HKcyberstark/TI_Mod)

Close

HKcyberstark / TI_ModView on GitHubMore

• External links
• Readme badge

Threat Intelligence with Elastic - Minemeld integration with Elasticsearch

☆19May 11, 2021Updated 5 years ago

Alternatives and similar repositories for TI_Mod

Users that are interested in TI_Mod are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• HKcyberstark / wazuh-ecs

  View on GitHub
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆28Jul 21, 2020Updated 5 years ago
• PaloAltoNetworks / minemeld-misp

  View on GitHub
  MineMeld nodes for MISP
  ☆19Jan 23, 2024Updated 2 years ago
• SanWieb / sigWah

  View on GitHub
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆40Jun 8, 2020Updated 6 years ago
• corelight / ecs-mapping

  View on GitHub
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆33May 23, 2026Updated 3 weeks ago
• sbeyn / kibana-plugin-line-sg

  View on GitHub
  Plugin for Kibana Version4.x and 5.x
  ☆13Sep 25, 2017Updated 8 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• corelight / ripple20

  View on GitHub
  A Zeek package for the passive detection of "Ripple20" vulnerabilities in the Treck TCP/IP stack.
  ☆32Jun 29, 2022Updated 3 years ago
• PaloAltoNetworks / minemeld-ansible

  View on GitHub
  Ansible playbook for installing MineMeld on Linux
  ☆47Mar 18, 2021Updated 5 years ago
• corelight / log-add-http-post-bodies

  View on GitHub
  Add POST body excerpt to Bro's HTTP log
  ☆14Dec 10, 2025Updated 6 months ago
• BreakingMalwareResearch / YetiToElastic

  View on GitHub
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Jan 6, 2021Updated 5 years ago
• Cyb3rWard0g / infosec-well-done

  View on GitHub
  A few quick recipes for those that do not have much time during the day
  ☆22Oct 28, 2024Updated last year
• aacgood / Cortex-Analyzers

  View on GitHub
  A collection of Cortex Analyzers and Responders for TheHive/Cortex
  ☆13Jan 29, 2020Updated 6 years ago
• theY4Kman / parsuricata

  View on GitHub
  Parse Suricata rules
  ☆14Aug 1, 2023Updated 2 years ago
• DearBytes / Opensource-Endpoint-Monitoring

  View on GitHub
  This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.
  ☆35Jul 8, 2019Updated 6 years ago
• corelight / zerologon

  View on GitHub
  Zeek package to detect Zerologon
  ☆11Nov 10, 2021Updated 4 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• cmcmsec / suricata_open

  View on GitHub
  ☆13Feb 25, 2021Updated 5 years ago
• CaliDog / tachikoma

  View on GitHub
  Tachikoma is a security alerting framework for human beings
  ☆22Sep 7, 2018Updated 7 years ago
• corelight / got_zoom

  View on GitHub
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Apr 15, 2020Updated 6 years ago
• corelight / conn-burst

  View on GitHub
  A Bro package to identify connections that are bursting (lots of data and transferring quickly).
  ☆13Oct 15, 2020Updated 5 years ago
• advanced-threat-research / Ripple-20-Detection-Logic

  View on GitHub
  Ripple20 Critical Vulnerabilities - Detection Logic and Signatures
  ☆12May 28, 2021Updated 5 years ago
• sm-biz / paloalto-elasticstack-viz

  View on GitHub
  PANW Firewall Visualisations using Elastic Stack
  ☆91Mar 5, 2023Updated 3 years ago
• Neo23x0 / IRNotes

  View on GitHub
  Some IR notes
  ☆17Jul 2, 2016Updated 9 years ago
• StackStorm-Exchange / stackstorm-salt

  View on GitHub
  st2 salt integration pack
  ☆12Apr 7, 2024Updated 2 years ago
• mrlesmithjr / ansible-suricata

  View on GitHub
  ☆12Jan 28, 2020Updated 6 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• salesforce / multithreaded-exfil-detection

  View on GitHub
  A simple way of detecting multithreaded exfiltration in Zeek.
  ☆15May 1, 2025Updated last year
• corelight / json-streaming-logs

  View on GitHub
  Zeek package to create JSON formatted logs to stream into data analysis systems.
  ☆31Dec 3, 2025Updated 6 months ago
• amuehlem / MISP-RPM

  View on GitHub
  RPM packages for MISP
  ☆41Jun 5, 2026Updated last week
• elastiflow / elastiflow_for_elasticsearch

  View on GitHub
  A solution for using the ElastiFlow Unified Collector with the Elastic Stack (Elasticsearch and Kibana).
  ☆26Nov 10, 2025Updated 7 months ago
• deltaray / bawk

  View on GitHub
  ☆14Sep 15, 2017Updated 8 years ago
• elastic / ecs-mapper

  View on GitHub
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆53Mar 9, 2022Updated 4 years ago
• CyberDefenseInstitute / CDIR-A

  View on GitHub
  CDIR Analyzer - parsers for data collected by CDIR Collector
  ☆21Jun 3, 2026Updated last week
• ncsa / bro-simple-scan

  View on GitHub
  ☆14Jan 14, 2026Updated 4 months ago
• pascalschulz / Infosec-Resources

  View on GitHub
  just a little treasure chest of stuff I need to watch / read later
  ☆32Mar 26, 2021Updated 5 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• CanTopay / thehive-playbook-creator

  View on GitHub
  A script to create and assign SOP tasks into the cases
  ☆20Aug 16, 2020Updated 5 years ago
• JustinAzoff / gotm

  View on GitHub
  Full packet capture with flow cutoff, rotation, and compression
  ☆15Sep 18, 2018Updated 7 years ago
• ipworkx / ecs-suricata

  View on GitHub
  ☆12Apr 23, 2020Updated 6 years ago
• siemonster / logstash

  View on GitHub
  Example configuration files for Logstash
  ☆44Oct 30, 2019Updated 6 years ago
• tylabs / dovehawk

  View on GitHub
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Jul 12, 2021Updated 4 years ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework

  View on GitHub
  Repository for SPEED SIEM Use Case Framework
  ☆60May 2, 2020Updated 6 years ago
• hardenedlinux / hardenedlinux-zeek-scripts

  View on GitHub
  ☆39Dec 4, 2023Updated 2 years ago