Alternatives and similar repositories for minemeld-docker

Users that are interested in minemeld-docker are comparing it to the libraries listed below

• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• counteractive / o365beat
  Elastic Beat for fetching and shipping Office 365 audit events
  ☆67Updated 4 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 7 months ago
• ReconInfoSec / graylog2thehive
  Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.
  ☆44Updated 4 years ago
• humio / security_monitoring
  ☆41Updated 2 years ago
• sans-blue-team / sec555-wiki
  ☆77Updated 6 years ago
• weslambert / securityonion-misp
  ☆36Updated 4 years ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆55Updated 5 years ago
• clausing / scripts
  ☆64Updated 4 months ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 4 years ago
• corelight / raspi-corelight
  Corelight@Home script
  ☆42Updated last year
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆94Updated 2 years ago
• rtkwlf / wolf-tools
  Tools and scripts by Arctic Wolf
  ☆68Updated last year
• jokezone / Update-Sysmon
  This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.
  ☆82Updated 2 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆70Updated 2 years ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆38Updated 2 years ago
• nidem / forgedpillow
  A tool to modify timestamps in a packet capture to a user selected date
  ☆31Updated 3 years ago
• sans-blue-team / sec530-wiki
  ☆54Updated 4 years ago
• chrissanders / idh
  Intrusion Detection Honeypots Book Code
  ☆25Updated 4 years ago
• ReconInfoSec / sigma-to-elastalert
  Ansible playbook to convert Sigma rules to ElastAlert rules
  ☆10Updated 4 years ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆67Updated 3 years ago
• DefensiveOrigins / ps-whitenoiseweb
  Powershell - web traffic whitenoise generator
  ☆47Updated 5 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• shadow-box / Palo-Alto-Networks-ELK-Stack
  Configuration for a Palo Alto Networks fed ELK Stack with Visualizations
  ☆73Updated 6 years ago
• PolitoInc / ELK-Hunting
  Threat Hunting with ELK Workshop (InfoSecWorld 2017)
  ☆66Updated 7 years ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆82Updated last year
• PaloAltoNetworks / Skillets
  Skillets is the default holding place for useful Panhandler skillets. These are usually smaller one-off bits that may not require their o…
  ☆12Updated 5 years ago
• high101bro / PoSh-EasyWin
  PowerShell - Endpoint Analysis Solution Your Windows Intranet Needs
  ☆48Updated 7 months ago
• brianaddicks / PowerAlto
  Palo Alto powershell
  ☆40Updated 3 years ago
• pfpt-andrew / Rapid-Response-Reporting
  RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…
  ☆37Updated 3 years ago