Neo23x0 / auditdLinks
Best Practice Auditd Configuration
☆1,696Updated 8 months ago
Alternatives and similar repositories for auditd
Users that are interested in auditd are comparing it to the libraries listed below
Sorting:
- Transform Linux Audit logs for SIEM usage☆793Updated last week
- Linux audit userspace repository☆675Updated 3 weeks ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆810Updated 5 years ago
- A Suricata based NDR distribution☆1,569Updated 2 weeks ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,512Updated last year
- A repository of sysmon configuration modules☆2,870Updated last year
- Detect Tactics, Techniques & Combat Threats☆2,204Updated 2 months ago
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,492Updated 2 months ago
- Digging Deeper....☆3,473Updated this week
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,234Updated last week
- Configuration files for the SOF-ELK VM☆1,667Updated 2 weeks ago
- Sysmon for Linux☆1,960Updated 3 months ago
- Create actionable data from your Vulnerability Scans☆1,389Updated 2 years ago
- PCI-DSS compliant Debian 11/12 hardening☆929Updated 3 weeks ago
- Wazuh - Ruleset☆483Updated last year
- Simple Bash IOC Scanner☆761Updated 3 years ago
- Collaborative Incident Response platform☆1,282Updated this week
- A repository for using osquery for incident detection and response☆863Updated 3 weeks ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆888Updated last year
- A utility to safely generate malicious network traffic patterns and evaluate controls.☆1,330Updated last year
- Re-play Security Events☆1,680Updated last year
- YARA signature and IOC database for my scanners and tools☆2,749Updated this week
- Your Everyday Threat Intelligence☆1,912Updated last month
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,143Updated last month
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆1,090Updated last week
- Mapping the MITRE ATT&CK Matrix with Osquery☆799Updated 2 years ago
- TheHive: a Scalable, Open Source and Free Security Incident Response Platform☆3,822Updated 2 months ago
- The Hunting ELK☆3,883Updated last year
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆431Updated last week
- Sysmon configuration file template with default high-quality event tracing☆5,193Updated last year