Security-Onion-Solutions / security-onionLinks
Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
☆3,101Updated 4 years ago
Alternatives and similar repositories for security-onion
Users that are interested in security-onion are comparing it to the libraries listed below
Sorting:
- Modern Honey Network☆2,467Updated 11 months ago
- Loki - Simple IOC and YARA Scanner☆3,664Updated last month
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,509Updated last year
- Cuckoo Sandbox is an automated dynamic malware analysis system☆5,839Updated 3 years ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,255Updated 3 weeks ago
- The Hunting ELK☆3,887Updated last year
- DEPRECATED - MozDef: Mozilla Enterprise Defense Platform☆2,169Updated 3 years ago
- The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.☆1,026Updated 3 years ago
- MISP (core software) - Open Source Threat Intelligence and Sharing Platform☆5,968Updated last week
- GRR Rapid Response: remote live forensics for incident response☆4,980Updated 4 months ago
- A network sniffer that logs all DNS server replies for use in a passive DNS setup☆1,725Updated last year
- TheHive: a Scalable, Open Source and Free Security Incident Response Platform☆3,843Updated 3 months ago
- Home of the dionaea honeypot☆777Updated last year
- Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.☆7,210Updated this week
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,373Updated last year
- A Suricata based NDR distribution☆1,572Updated last month
- Fast Incident Response☆1,946Updated last week
- Repository of yara rules☆4,560Updated last year
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆4,878Updated 9 months ago
- Arkime is an open source, large scale, full packet capturing, indexing, and database system.☆7,156Updated this week
- Pulled Pork for Snort and Suricata rule management (from Google code)☆441Updated 4 years ago
- Your Everyday Threat Intelligence☆1,919Updated 2 months ago
- Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own in…☆4,141Updated this week
- Configuration files for the SOF-ELK VM☆1,685Updated last week
- Create actionable data from your Vulnerability Scans☆1,390Updated 2 years ago
- PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highli…☆1,780Updated 3 years ago
- An informational repo about hunting for adversaries in your IT environment.☆1,825Updated 3 years ago
- The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…☆2,909Updated this week
- A toolset to make a system look as if it was the victim of an APT attack☆2,668Updated last month
- Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber☆1,579Updated 2 years ago