Security-Onion-Solutions / securityonionLinks
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.
☆3,745Updated this week
Alternatives and similar repositories for securityonion
Users that are interested in securityonion are comparing it to the libraries listed below
Sorting:
- Digging Deeper....☆3,307Updated last week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,514Updated 11 months ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,138Updated last week
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,772Updated 11 months ago
- Automated Adversary Emulation Platform☆6,197Updated 3 weeks ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,092Updated 4 years ago
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,183Updated last month
- A Suricata based IDS/IPS/NSM distro☆1,539Updated 10 months ago
- Main Sigma Rule Repository☆9,296Updated this week
- A curated list of awesome YARA rules, tools, and people.☆3,840Updated 2 months ago
- A utility to safely generate malicious network traffic patterns and evaluate controls.☆1,312Updated last year
- Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…☆3,254Updated 4 months ago
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆2,904Updated 11 months ago
- ✨ A curated list of awesome threat detection and hunting resources 🕵️♂️☆4,202Updated 11 months ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆2,157Updated 3 weeks ago
- Six Degrees of Domain Admin☆10,215Updated this week
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,235Updated last year
- Small and highly portable detection tests based on MITRE's ATT&CK.☆10,655Updated this week
- A repository of sysmon configuration modules☆2,805Updated 9 months ago
- Your Everyday Threat Intelligence☆1,865Updated 2 weeks ago
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,433Updated last week
- TheHive: a Scalable, Open Source and Free Security Incident Response Platform☆3,695Updated 2 years ago
- Open EDR public repository☆2,456Updated last year
- Adversary Emulation Framework☆9,498Updated 3 weeks ago
- Loki - Simple IOC and YARA Scanner☆3,561Updated 6 months ago
- ☆2,288Updated last year
- Open Cyber Threat Intelligence Platform☆7,397Updated this week
- 🍯 T-Pot - The All In One Multi Honeypot Platform 🐝☆7,999Updated this week
- Malware Configuration And Payload Extraction☆2,471Updated last week
- A curated list of Awesome Threat Intelligence resources☆8,868Updated last month