Neo23x0 / auditdLinks
Best Practice Auditd Configuration
☆1,659Updated 6 months ago
Alternatives and similar repositories for auditd
Users that are interested in auditd are comparing it to the libraries listed below
Sorting:
- Transform Linux Audit logs for SIEM usage☆775Updated last month
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,514Updated last year
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆799Updated 5 years ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,164Updated this week
- PCI-DSS compliant Debian 11/12 hardening☆896Updated last week
- Digging Deeper....☆3,364Updated this week
- Configuration files for the SOF-ELK VM☆1,616Updated this week
- A repository of sysmon configuration modules☆2,835Updated 11 months ago
- A utility to safely generate malicious network traffic patterns and evaluate controls.☆1,317Updated last year
- Detect Tactics, Techniques & Combat Threats☆2,187Updated last week
- Linux audit userspace repository☆667Updated this week
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,046Updated last week
- Create actionable data from your Vulnerability Scans☆1,389Updated 2 years ago
- A Suricata based IDS/IPS/NSM distro☆1,553Updated 11 months ago
- The Hunting ELK☆3,867Updated last year
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆419Updated last week
- A website and framework for testing NIDS detection☆273Updated 3 weeks ago
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,454Updated 2 weeks ago
- Real-time, container-based file scanning at enterprise scale☆933Updated 3 weeks ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆929Updated last year
- Collaborative Incident Response platform☆1,232Updated this week
- Wazuh - Ruleset☆461Updated 10 months ago
- Open-source CVE monitoring and alerting platform☆2,145Updated last week
- YARA signature and IOC database for my scanners and tools☆2,697Updated last week
- Your Everyday Threat Intelligence☆1,888Updated this week
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆821Updated this week
- A repository for using osquery for incident detection and response☆855Updated 3 years ago
- Loki - Simple IOC and YARA Scanner☆3,595Updated 8 months ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆878Updated 11 months ago
- Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…☆1,022Updated 2 weeks ago