Security-Onion-Solutions / securityonionLinks
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.
☆3,757Updated this week
Alternatives and similar repositories for securityonion
Users that are interested in securityonion are comparing it to the libraries listed below
Sorting:
- Digging Deeper....☆3,314Updated this week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,513Updated 11 months ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,092Updated 4 years ago
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,778Updated 11 months ago
- A Suricata based IDS/IPS/NSM distro☆1,539Updated 10 months ago
- A curated list of awesome YARA rules, tools, and people.☆3,840Updated 2 months ago
- Automated Adversary Emulation Platform☆6,209Updated last month
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,140Updated this week
- Loki - Simple IOC and YARA Scanner☆3,561Updated 6 months ago
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆2,906Updated last year
- MISP (core software) - Open Source Threat Intelligence and Sharing Platform☆5,765Updated this week
- TheHive: a Scalable, Open Source and Free Security Incident Response Platform☆3,695Updated 2 years ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆2,160Updated 3 weeks ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,235Updated last year
- Small and highly portable detection tests based on MITRE's ATT&CK.☆10,671Updated this week
- Main Sigma Rule Repository☆9,312Updated this week
- Open EDR public repository☆2,459Updated last year
- ✨ A curated list of awesome threat detection and hunting resources 🕵️♂️☆4,202Updated 11 months ago
- ☆2,288Updated last year
- A toolset to make a system look as if it was the victim of an APT attack☆2,608Updated 2 years ago
- An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.☆1,919Updated 3 weeks ago
- A repository of sysmon configuration modules☆2,805Updated 10 months ago
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆7,651Updated last week
- Adversary Emulation Framework☆9,525Updated this week
- The Hunting ELK☆3,851Updated last year
- Detect Tactics, Techniques & Combat Threats☆2,175Updated 3 weeks ago
- Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…☆3,264Updated 4 months ago
- Repository of yara rules☆4,422Updated last year
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,186Updated last month
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,433Updated 2 weeks ago