Alternatives and similar repositories for securityonion-nsmnow-admin-scripts

Users that are interested in securityonion-nsmnow-admin-scripts are comparing it to the libraries listed below

• Security-Onion-Solutions / securityonion-setup
  ☆36Updated 5 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 5 years ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆40Updated 2 years ago
• 0x4D31 / honeybits-win
  Windows version of honeybits - a PoC tool to create breadcrumbs and honeytokens, to lead the attackers to your honeypots!
  ☆25Updated 8 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆103Updated 4 years ago
• target / attack-navigator-docker
  A simple Docker container that serves the MITRE ATT&CK Navigator web app
  ☆27Updated 2 years ago
• michalpurzynski / suricata-rules
  Example Suricata rules implementing some of my detection tactics
  ☆22Updated 3 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆56Updated this week
• thomaspatzke / sigma-workshop
  Elasticsearch/Kibana environment and log data for Sigma workshop
  ☆27Updated 6 years ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆27Updated 8 years ago
• sneakymonk3y / foxhound-nsm
  Foxhound: Blackbox - A Raspberry Pi NSM
  ☆37Updated 8 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 4 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 7 years ago
• PolitoInc / ELK-Hunting
  Threat Hunting with ELK Workshop (InfoSecWorld 2017)
  ☆65Updated 8 years ago
• alphasoc / nfr
  A lightweight tool to score network traffic and flag anomalies
  ☆123Updated last year
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆30Updated last year
• aabed / dockpot
  ☆49Updated 10 years ago
• jobroche / Pastepwnd
  Identify compromised domains or emails. A python based HIBP and HackedEmails wrapper
  ☆38Updated 7 years ago
• SMAPPER / NXLog-AutoConfig
  ☆50Updated 5 years ago
• fugawi / mate
  Mitre Att&ck Technique Emulation
  ☆82Updated 6 years ago
• zeek / zeek-docs
  Documentation for Zeek
  ☆50Updated 4 months ago
• sealingtech / EDCOP
  Expandable Defensive Cyber Operations Platform
  ☆44Updated 3 years ago
• MISP / misp-vagrant
  Deploy MISP Project software with Vagrant.
  ☆45Updated 5 years ago
• B0fH / yara-suricata
  A Yara Lua output script for Suricata
  ☆20Updated 6 years ago
• andrewbeard / broworkshop
  Materials for the BSides NoVA/Charleston 2018 Bro Workshop
  ☆14Updated 8 months ago
• MHaggis / app_splunk_sysmon_hunter
  Splunk App to assist Sysmon Threat Hunting
  ☆38Updated 8 years ago
• mikermcneil / fleet-osquery-in-a-box
  Simple Docker-based quickstart for osquery, Fleet, and ELK stack
  ☆64Updated 2 years ago
• Security-Onion-Solutions / securityonion-docker-hh
  ☆21Updated 5 years ago
• dgunter / evtxtoelk
  A lightweight tool to load Windows Event Log evtx files into Elasticsearch.
  ☆119Updated 5 years ago
• att / docker-forensics
  Tools to assist in forensicating docker
  ☆86Updated 11 months ago