Prelude-SIEM / prelude-correlator

Related projects ⓘ

Alternatives and complementary repositories for prelude-correlator

• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆15Updated 5 months ago
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated 2 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆11Updated 4 years ago
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆9Updated last year
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 2 years ago
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆14Updated 3 years ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 4 years ago
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆13Updated 10 months ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 2 months ago
• MISP / misp-airgap
  Scripts to deploy and update MISP in air-gapped environments
  ☆16Updated 3 months ago
• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆6Updated 5 months ago
• abhinavbom / Metasploit-Penetration-Testing-Cookbook-Codes
  Following repository contains source codes used in my two Books.
  ☆10Updated 9 years ago
• zeek / zeek-agent-framework
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Updated 4 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆83Updated 5 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆21Updated 3 weeks ago
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆27Updated 9 months ago
• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• idaholab / EMV
  Exploit, Malware and Vulnerability Scoring Application
  ☆10Updated last year
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated last year
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated 11 months ago
• corelight / zeek-quic
  Bro analyzer that detects Google's QUIC protocol
  ☆10Updated 3 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• MITRECND / d20
  Automated Static Analysis Framework
  ☆10Updated 2 years ago
• amzn / zeek-plugin-tds
  Zeek network security monitor plugin that enables parsing of the Tabular Data Stream (TDS) protocol
  ☆25Updated 5 months ago
• MAECProject / cuckoo
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆10Updated 4 years ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• OTRF / openhunt
  ☆33Updated 3 years ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆13Updated 8 months ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year