☆50Aug 30, 2020Updated 5 years ago
Alternatives and similar repositories for NXLog-AutoConfig
Users that are interested in NXLog-AutoConfig are comparing it to the libraries listed below
Sorting:
- This repository is created to add value to existing Network Security Monitoring solutions.☆17Sep 30, 2016Updated 9 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆55Jul 1, 2022Updated 3 years ago
- ☆226Nov 9, 2023Updated 2 years ago
- ☆134Mar 21, 2024Updated last year
- ☆30Nov 15, 2018Updated 7 years ago
- ☆34Apr 29, 2021Updated 4 years ago
- Indices for courses in SANS' Network Security Operations curriculum☆17Feb 5, 2016Updated 10 years ago
- ☆22Mar 16, 2020Updated 6 years ago
- incident response scripts☆18Mar 4, 2019Updated 7 years ago
- This is a repository for freq.py and freq_server.py☆217Feb 1, 2026Updated last month
- An analytical framework for network traffic and behavioral analytics☆456Dec 7, 2022Updated 3 years ago
- Snapshot, patch, health-check, and potentially roll-back Windows VMs☆34Feb 20, 2018Updated 8 years ago
- A Powershell script for frequency analysis of separated values data files.☆17Jan 22, 2014Updated 12 years ago
- ☆77Jun 25, 2019Updated 6 years ago
- Contains Logstash related content including tons of Logstash configurations☆254Aug 25, 2021Updated 4 years ago
- This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.☆83Mar 20, 2023Updated 3 years ago
- SANS Hunting on the Cheap☆36Apr 12, 2016Updated 9 years ago
- Use DNS to hunt for threats including DGAs☆15Jan 4, 2016Updated 10 years ago
- Evolving directions on building the best Open Source Forensics VM☆161Jul 5, 2018Updated 7 years ago
- Web application to create indexes for GIAC certification examinations.☆151Apr 12, 2023Updated 2 years ago
- Help summarize a PCAP file☆33Dec 27, 2011Updated 14 years ago
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆115Apr 26, 2024Updated last year
- To parse ugly Microsoft DNS Logs....☆41Jun 8, 2018Updated 7 years ago
- A repository for using windows event forwarding for incident detection and response☆1,300Sep 8, 2025Updated 6 months ago
- Fork/mirror of Darcs repo for PyFlag (Forensic and Log Analysis GUI)☆36Oct 16, 2010Updated 15 years ago
- Simple Microsoft Windows sessions event logs visualization☆156May 2, 2022Updated 3 years ago
- VirusTotal SIEM Integration and Automation☆18Jan 16, 2017Updated 9 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Feb 20, 2024Updated 2 years ago
- Bluewall is a firewall framework designed for offensive and defensive cyber professionals.☆106Apr 7, 2019Updated 6 years ago
- Recon Hunt Queries☆79May 16, 2021Updated 4 years ago
- Zeek package to detect Zerologon☆11Nov 10, 2021Updated 4 years ago
- Zeek package to generate a SMB client fingerprint☆27May 5, 2020Updated 5 years ago
- Scripts for Looking up OUIs or Vendor information from MAC addresses☆11Dec 24, 2023Updated 2 years ago
- A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, t…☆12Nov 23, 2022Updated 3 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2☆14Oct 12, 2020Updated 5 years ago
- Mac osx forensics tools☆12Nov 28, 2020Updated 5 years ago
- Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into …☆822Nov 5, 2023Updated 2 years ago
- Powershell Functions to interact with TheHive-Project☆11Jun 27, 2019Updated 6 years ago
- ☆16Jan 18, 2020Updated 6 years ago