Security-Onion-Solutions / securityonion-imageLinks
☆51Updated last week
Alternatives and similar repositories for securityonion-image
Users that are interested in securityonion-image are comparing it to the libraries listed below
Sorting:
- ☆58Updated this week
- ☆36Updated 4 years ago
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago
- ☆53Updated 3 years ago
- ☆90Updated last week
- ☆75Updated this week
- Workflows for Shuffle☆23Updated 2 years ago
- OSSEM Common Data Model☆56Updated 3 years ago
- The Infosec Community Definitive Guide to Jupyter Notebooks☆126Updated 4 years ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago
- misp-cloud - Cloud-ready images of MISP☆73Updated 3 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆73Updated last week
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆112Updated 3 years ago
- A CALDERA plugin☆77Updated last month
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 3 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆37Updated 3 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆54Updated 3 years ago
- Documentation for Zeek☆50Updated this week
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆37Updated 3 weeks ago
- Wrap any binary into a cached webserver☆55Updated 3 years ago
- A community event for security researchers to share their favorite notebooks☆108Updated last year
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆40Updated 3 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆70Updated 4 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 5 years ago
- Tool used to perform threat intelligence against packet data☆35Updated 8 months ago
- Collection of resources related to the Center for Threat-Informed Defense☆76Updated last year
- Apps to be used for Shuffle automation. Most of Shuffle's apps (2500+) are generated from APIs, and available in the search engine below:☆116Updated last week
- Fast IOC and YARA Scanner☆83Updated 5 years ago
- A collection of tips for using MISP.☆74Updated 9 months ago
- Best practices in threat intelligence☆48Updated 2 years ago