Security-Onion-Solutions / securityonionLinks
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.
☆4,173Updated this week
Alternatives and similar repositories for securityonion
Users that are interested in securityonion are comparing it to the libraries listed below
Sorting:
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,269Updated last week
- Digging Deeper....☆3,564Updated this week
- TheHive: a Scalable, Open Source and Free Security Incident Response Platform☆3,851Updated 3 months ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆2,255Updated 2 weeks ago
- Automated Adversary Emulation Platform☆6,538Updated this week
- A Suricata based NDR distribution☆1,575Updated 2 months ago
- Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.☆2,104Updated this week
- MISP (core software) - Open Source Threat Intelligence and Sharing Platform☆6,000Updated this week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,509Updated last year
- Main Sigma Rule Repository☆9,790Updated this week
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,509Updated 4 months ago
- Modular and decentralised honeypot☆2,672Updated last week
- Open EDR public repository☆2,549Updated last year
- A curated list of awesome YARA rules, tools, and people.☆4,070Updated 7 months ago
- Open Cyber Threat Intelligence Platform☆7,922Updated last week
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,364Updated last month
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,103Updated 4 years ago
- Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.☆2,909Updated this week
- Loki - Simple IOC and YARA Scanner☆3,675Updated 2 weeks ago
- RedEye is a visual analytic tool supporting Red & Blue Team operations☆2,731Updated 2 years ago
- Small and highly portable detection tests based on MITRE's ATT&CK.☆11,201Updated this week
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆1,135Updated 3 weeks ago
- Cyber Threat Intelligence Repository expressed in STIX 2.0☆1,975Updated 2 weeks ago
- A repository of sysmon configuration modules☆2,900Updated last year
- Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OIS…☆5,764Updated this week
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,858Updated last year
- Malware Configuration And Payload Extraction☆2,789Updated this week
- ✨ A curated list of awesome threat detection and hunting resources 🕵️♂️☆4,405Updated last year
- An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.☆2,027Updated 5 months ago
- IntelOwl: manage your Threat Intelligence at scale☆4,345Updated last week