Prelude-SIEM / prelude-correlator
The official Prelude-Correlator GitHub mirror of https://www.prelude-siem.org/projects/prelude-correlator/repository
☆10Updated 3 years ago
Related projects: ⓘ
- ☆15Updated 6 years ago
- Firepit - STIX Columnar Storage☆15Updated 3 months ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆13Updated last year
- A Zeek package that detects Zoom logins and meeting joins☆11Updated 4 years ago
- CyCAT.org taxonomies☆14Updated 3 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 2 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆17Updated 4 years ago
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- A Python implementation of the Community ID flow hashing standard☆23Updated 9 months ago
- CyCAT.org API back-end server including crawlers☆30Updated last year
- Kestrel Jupyter Notebook Kernel☆9Updated 11 months ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- ☆33Updated 3 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2☆14Updated 3 years ago
- Osquery Packs we use for customer security hardening☆12Updated 6 months ago
- A Spicy protocol analyzer for WireGuard☆27Updated 4 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆13Updated 4 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆32Updated 2 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes☆15Updated 2 years ago
- Exploit, Malware and Vulnerability Scoring Application☆11Updated 11 months ago
- DefectDojo Community Content☆17Updated 5 months ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆32Updated this week
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 7 years ago
- Script to create MITRE ATT&CK Navigator layers from the annotated detection rules in Elastic Security (Kibana).☆20Updated last year
- A privacy-aware exchange module to securely and privately share your indicators☆13Updated 7 years ago
- D4 core software (server and sample sensor client)☆43Updated 8 months ago
- Tools used by CSIRT and especially in the scope of CNW☆14Updated 3 months ago
- A mapping project between tags (annotations, labels) and domain names☆11Updated 4 months ago