PolitoInc / DNS-ELKLinks
Experimental DNS logs pipeline based on Pi-hole dnsmasq logs, ELK stack, and Filebeat. Sample configs included.
☆30Updated last year
Alternatives and similar repositories for DNS-ELK
Users that are interested in DNS-ELK are comparing it to the libraries listed below
Sorting:
- Configuration for a Palo Alto Networks fed ELK Stack with Visualizations☆73Updated 6 years ago
- Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases☆155Updated last year
- Logstash Configuration for Linux Logs (Authentication, Apache, Mail)☆93Updated 5 years ago
- Dashboards and loader for ROCK NSM dashboards☆49Updated 2 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago
- elasticsearch, logstash and kibana configuration for pi-hole visualiziation☆207Updated 3 years ago
- MineMeld nodes for MISP☆19Updated last year
- PANW Firewall Visualisations using Elastic Stack☆91Updated 2 years ago
- Engine of MineMeld☆140Updated 2 years ago
- ☆38Updated 5 years ago
- A search command for Splunk which will allow you to search Elastic Search and display the results in the Splunk GUI☆69Updated last week
- SIAC is an enterprise SIEM built on open-source technology.☆115Updated 6 years ago
- Alert condition plugin for Graylog to perform aggregation☆21Updated 2 years ago
- ☆23Updated 6 years ago
- Bro script package to create JSON formatted logs to stream into data analysis systems.☆28Updated last year
- WebUI of MineMeld☆43Updated 2 years ago
- Splunk Alert Manager with advanced reporting on alerts, workflows (modify assignee, status, severity) and auto-resolve features☆81Updated 3 years ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 4 years ago
- Enterprise Log Search and Archive☆209Updated 6 years ago
- Alert Wizard plugin for Graylog to manage the alert rules☆49Updated last month
- Simple block lists hub for PAN-OS DBL feature☆35Updated 6 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated 2 months ago
- Contains Logstash related content including tons of Logstash configurations☆254Updated 3 years ago
- ☆17Updated 5 years ago
- Documentation for ROCK NSM☆26Updated 4 years ago
- Files from my Storm Center Articles☆17Updated last year
- Kibana 4 Templates for Suricata IDPS☆33Updated 9 years ago
- Snort IDS/IPS log analytics using the Elastic Stack.☆86Updated 4 years ago
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆18Updated 11 years ago