Alternatives and similar repositories for DNS-ELK

Users that are interested in DNS-ELK are comparing it to the libraries listed below

• kicker83 / ELK-Networking
  Repository with logstash, elasticsearch and kibana configs. Palo Alto, Juniper, BlueCoat, etc.
  ☆19Updated 11 months ago
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 4 years ago
• Graylog2 / graylog-guide-snort
  How to send structured Snort IDS alert logs into Graylog
  ☆27Updated last year
• corelight / Corelight-Ansible-Roles
  Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…
  ☆16Updated 3 years ago
• corelight / json-streaming-logs
  Bro script package to create JSON formatted logs to stream into data analysis systems.
  ☆28Updated last year
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year
• siemonster / logstash
  Example configuration files for Logstash
  ☆44Updated 5 years ago
• shadow-box / Palo-Alto-Networks-ELK-Stack
  Configuration for a Palo Alto Networks fed ELK Stack with Visualizations
  ☆73Updated 6 years ago
• jtschichold / panwdbl
  Simple block lists hub for PAN-OS DBL feature
  ☆35Updated 6 years ago
• rocknsm / rock-dashboards
  Dashboards and loader for ROCK NSM dashboards
  ☆48Updated 2 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 4 years ago
• thomaspatzke / logstash-linux
  Logstash Configuration for Linux Logs (Authentication, Apache, Mail)
  ☆93Updated 5 years ago
• opc40772 / suricata-graylog
  ☆23Updated 5 years ago
• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆24Updated 6 years ago
• danielguerra69 / bro-debian-elasticsearch
  bro on debian with elasticsearch support
  ☆24Updated 8 years ago
• empow / logstash-parsers
  ☆38Updated 5 years ago
• Grunticus03 / ElasticMARC
  DMARC Aggregate report digest and analysis for Windows utilizing the Elastic Stack
  ☆27Updated 3 years ago
• corelight / log-add-http-post-bodies
  Add POST body excerpt to Bro's HTTP log
  ☆14Updated last year
• ncsa / bro-doctor
  ☆23Updated 5 years ago
• olafhartong / parsoalto
  Palo Alto Networks Rule Parser
  ☆16Updated 8 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 4 years ago
• Graylog2 / graylog-plugin-cef
  [DEPRECATED] CEF (Common Event Format) input plugin for Graylog
  ☆10Updated 3 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• corelight / conn-burst
  A Bro package to identify connections that are bursting (lots of data and transferring quickly).
  ☆13Updated 4 years ago
• harvard-itsecurity / qradar-seculert-push
  Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!
  ☆18Updated 11 years ago
• juju4 / ansible-zeek
  setup zeek, previously Bro IDS
  ☆18Updated last month
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 4 years ago
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• counteractive / o365beat
  Elastic Beat for fetching and shipping Office 365 audit events
  ☆67Updated 4 years ago