Information-Warfare-Center / CSI-SIEMLinks
CSI SIEM
☆109Updated 3 years ago
Alternatives and similar repositories for CSI-SIEM
Users that are interested in CSI-SIEM are comparing it to the libraries listed below
Sorting:
- an awesome list of active defense resources☆127Updated 5 years ago
- Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries☆52Updated 3 years ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆103Updated last year
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆56Updated 4 years ago
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆63Updated last month
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆79Updated 3 months ago
- ☆69Updated 4 years ago
- A curated list of Awesome Threat Intelligence resources☆50Updated 7 years ago
- Sandfly Security Agentless Compromise and Intrusion Detection System For Linux☆88Updated 3 months ago
- Submits multiple domains to VirusTotal API☆59Updated 4 years ago
- Passive service locator, a python sniffer that identifies servers, clients, names and much more☆257Updated 2 years ago
- This contains a list of Blue Team Tools that I use daily, and have stored here for reference.☆34Updated 8 years ago
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆112Updated 3 years ago
- Fast IOC and YARA Scanner☆88Updated 5 years ago
- Dictionary of CTI-related acronyms, terms, and jargon☆146Updated last month
- Custom security distro for remote penetration testing☆55Updated 4 years ago
- 🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)☆102Updated 3 years ago
- A GeoIP lookup utility utilizing ipinfo.io services.☆93Updated 2 years ago
- A curated list of FOSS software appliances for building a SOC☆18Updated 5 years ago
- Gotanda is browser Web Extension for OSINT.☆194Updated 2 years ago
- Run Velociraptor on Security Onion☆40Updated 3 years ago
- You and the AppleLabs' Incident Response Team have been notified of a potential breach to a Human Resources' workstation. According to th…☆77Updated 4 years ago
- On demand query API for https://github.com/davidonzo/Threat-Intel project.☆57Updated last year
- Docker configurations for TheHive, Cortex and 3rd party tools☆128Updated 3 years ago
- ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)☆46Updated 4 years ago
- Collection of walkthroughs on various threat hunting techniques☆76Updated 5 years ago
- SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.☆218Updated 3 years ago
- ☆65Updated 4 months ago
- Accompanying documentation, images, source code and other stuff from the cybernomad.online blog☆27Updated 5 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆50Updated last year