RyPeck / python-LEEFLinks
Python Module for creating Log Event Extended Format events for IBM QRadar
☆12Updated 9 years ago
Alternatives and similar repositories for python-LEEF
Users that are interested in python-LEEF are comparing it to the libraries listed below
Sorting:
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago
- integrating bro into yara☆33Updated 10 years ago
- STIX Tools & Scripts☆47Updated 11 years ago
- Generates visualizations from the output of flow tools such as SiLK.☆35Updated 8 years ago
- Metadata Inspection Database Alerting System☆42Updated 11 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago
- Bro Snippets☆21Updated 10 years ago
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆18Updated 11 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch☆61Updated 8 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- Various Bro scripts☆38Updated 11 years ago
- Bro scripts to be shared with the community☆109Updated 12 years ago
- A Python library for being a CND Batman....☆35Updated 9 years ago
- A tool designed for consistent and safe capture of off network web resources.☆38Updated 8 years ago
- An ICAP Server with yara scanner for URL and content.☆59Updated 6 months ago
- Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)☆30Updated 11 years ago
- ☆85Updated 11 years ago
- CRITs IOC Visualization in Maltego☆28Updated 10 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44Updated last year
- CRITs Services Collection☆15Updated 8 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 8 years ago
- **BETA** A simple buildscript for network security monitoring on RHEL/CentOS☆31Updated 8 years ago
- Automation for VirusTotal☆31Updated 9 years ago
- YETI is a TAXII implementation☆46Updated 6 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 11 years ago
- Script for generating Bro intel files from pdf or html reports☆77Updated 9 years ago
- Python tools for IOC (Indicator of Compromise) handling☆96Updated 3 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- A Network Inspection Tool☆81Updated 7 years ago