PaloAltoNetworks / minemeld-ansibleView external linksLinks
Ansible playbook for installing MineMeld on Linux
☆48Mar 18, 2021Updated 4 years ago
Alternatives and similar repositories for minemeld-ansible
Users that are interested in minemeld-ansible are comparing it to the libraries listed below
Sorting:
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19May 11, 2021Updated 4 years ago
- WebUI of MineMeld☆43Mar 16, 2023Updated 2 years ago
- Prototypes for MineMeld nodes☆39Oct 15, 2021Updated 4 years ago
- Ansible role to install auditbeat for security monitoring. (Ruleset included)☆16Nov 16, 2023Updated 2 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Jan 6, 2021Updated 5 years ago
- Converts Netwitness log parser configuration to Logstash configuration☆20Sep 10, 2020Updated 5 years ago
- Python idiomatic SDK for Cortex™ Data Lake.☆48Mar 24, 2025Updated 10 months ago
- Engine of MineMeld☆141Feb 15, 2023Updated 3 years ago
- This repository contains a few examples of actions that can be added to rules within Elastic Security.☆24Feb 6, 2025Updated last year
- ☆11Apr 22, 2022Updated 3 years ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆28Jul 21, 2020Updated 5 years ago
- ☆25Updated this week
- A solution for using the ElastiFlow Unified Collector with the Elastic Stack (Elasticsearch and Kibana).☆25Nov 10, 2025Updated 3 months ago
- ☆13Feb 25, 2021Updated 4 years ago
- Parse Suricata rules☆13Aug 1, 2023Updated 2 years ago
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Jan 29, 2020Updated 6 years ago
- Integrate IBM QRadar and RPA to automate security L1 tasks.☆14May 20, 2022Updated 3 years ago
- A simple way of detecting multithreaded exfiltration in Zeek.☆15May 1, 2025Updated 9 months ago
- ☆12Jan 28, 2020Updated 6 years ago
- Read only mirror. To contribute or submit issues, please go to the website link --->☆15Jul 25, 2023Updated 2 years ago
- Framework and utilities to easily manage and edit Palo Alto Network PANOS devices☆223Jun 16, 2021Updated 4 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Apr 10, 2017Updated 8 years ago
- Use DNS to hunt for threats including DGAs☆15Jan 4, 2016Updated 10 years ago
- Quantitate binary risk assessment☆17May 9, 2022Updated 3 years ago
- Zeek Training Materials/Products☆41Feb 2, 2026Updated 2 weeks ago
- DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications☆35Feb 5, 2022Updated 4 years ago
- Using QRadar API☆20Feb 23, 2018Updated 7 years ago
- ☆16Apr 16, 2015Updated 10 years ago
- check_cisco_ucs is a Nagios plugin to monitor Cisco UCS rack and blade center hardware☆17Dec 18, 2024Updated last year
- pan-stix☆19Oct 12, 2017Updated 8 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆38Aug 18, 2022Updated 3 years ago
- Configuration for a Palo Alto Networks fed ELK Stack with Visualizations☆75Apr 13, 2019Updated 6 years ago
- MineMeld nodes for MISP☆19Jan 23, 2024Updated 2 years ago
- List of sigma for a variety of threats for multiple log sources.☆13Nov 23, 2018Updated 7 years ago
- A tool for bulk URL queries against Palo Alto Networks' PAN-DB cloud database☆18Sep 11, 2023Updated 2 years ago
- Vulnerability Assessment Module - OpenVas with Elastic stack using VulnWhisperer☆19Jun 11, 2019Updated 6 years ago
- Suricata LUA scripts to detect CVE-2019-12255, CVE-2019-12256, CVE-2019-12258, and CVE-2019-12260☆19Nov 28, 2019Updated 6 years ago
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆27May 18, 2021Updated 4 years ago
- IronSkillet is a set of day-one configuration templates for PAN-OS to enable alignment with security best practices. See the Quick Start …☆218May 22, 2023Updated 2 years ago