Security-Onion-Solutions / securityonion-setupLinks
☆36Updated 4 years ago
Alternatives and similar repositories for securityonion-setup
Users that are interested in securityonion-setup are comparing it to the libraries listed below
Sorting:
- Ansible playbook to install Malware Information Sharing Platform (MISP)☆17Updated 10 years ago
- vagrant multi-machine: Moloch, Bro,Suricata,ElasticSearch,Kibana☆41Updated 10 years ago
- ☆24Updated 5 years ago
- STIX Tools & Scripts☆47Updated 11 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago
- Meeting notes☆15Updated 9 years ago
- Metadata Inspection Database Alerting System☆42Updated 11 years ago
- Bro scripts for the ROCK platform. http://rocknsm.io☆33Updated last year
- scan-detection policies for bro☆16Updated 4 months ago
- Files from my Storm Center Articles☆17Updated last year
- Feed for verious malicious IPs such as malware and botnets☆12Updated 8 years ago
- A Docker container for Moloch based on minimal Debian☆26Updated 9 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- Connectors for the Zeek NetControl framework☆19Updated 4 months ago
- ☆71Updated 3 years ago
- Script for generating Bro intel files from pdf or html reports☆77Updated 9 years ago
- Time-Machine Dynamic Bulk Packet Recorder☆36Updated last month
- Scripts that are suited for blue teams☆33Updated 9 years ago
- Compare multiple log formats against malware reputation lists.☆88Updated 7 years ago
- Automatic firewall rule orchestator.☆83Updated 7 years ago
- Megatron - A System for Abuse- and Incident Handling☆44Updated 8 years ago
- Dashboards and loader for ROCK NSM dashboards☆48Updated 2 years ago
- Bro scripts to be shared with the community☆109Updated 12 years ago
- The Bro/Zeek language cheat sheet☆52Updated 12 years ago
- ☆85Updated 11 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆86Updated 6 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 7 months ago
- Bro-IDS scripts☆50Updated 8 years ago