Security-Onion-Solutions / securityonion-socView external linksLinks
☆61Updated this week
Alternatives and similar repositories for securityonion-soc
Users that are interested in securityonion-soc are comparing it to the libraries listed below
Sorting:
- ☆95Updated this week
- ☆13Apr 8, 2022Updated 3 years ago
- Node.js SDK for IBM X-Force Exchange☆15Aug 20, 2018Updated 7 years ago
- Scripts to inject demo data and network traffic into an existing Alienvault/OSSIM installation☆21Jul 4, 2017Updated 8 years ago
- OpenDXL Console is a high-level web-based console for interacting with a DXL fabric☆11Mar 29, 2021Updated 4 years ago
- ☆11Jan 5, 2021Updated 5 years ago
- Certbot container that stores its configuration in an AWS S3 bucket☆15Updated this week
- A skeleton project for quickly getting a new cisagov Docker container started.☆19Updated this week
- A PoC backdoor that uses Gmail as a C&C server☆13Jun 28, 2020Updated 5 years ago
- ☆12Dec 7, 2022Updated 3 years ago
- Python client for flagr☆16Jul 20, 2020Updated 5 years ago
- Integrate IBM QRadar and RPA to automate security L1 tasks.☆14May 20, 2022Updated 3 years ago
- THOR APT Scanner User Manual☆20Jan 30, 2026Updated 2 weeks ago
- Tool to collect system information to troubleshoot Cilium & Hubble related issues☆16Sep 3, 2021Updated 4 years ago
- ☆37Dec 17, 2020Updated 5 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Apr 10, 2020Updated 5 years ago
- Docker files for Security Onion☆42Jan 28, 2021Updated 5 years ago
- A collection of open source Graylog integrations that will be released together.☆16Apr 3, 2024Updated last year
- Example go code demonstrating pprof labels☆17Apr 13, 2021Updated 4 years ago
- List of sigma for a variety of threats for multiple log sources.☆13Nov 23, 2018Updated 7 years ago
- Minimal syslog-ng container (8.5mb) that listens for tcp and upd on port 514.☆14Jun 15, 2015Updated 10 years ago
- A simple, self-contained regression test suite for the Linux Kernel's audit subsystem☆24Dec 16, 2025Updated last month
- Threat Mapping Catalogue☆18Aug 10, 2021Updated 4 years ago
- Network and web related exploratory playground.☆19Apr 6, 2016Updated 9 years ago
- CITL's static analysis engine for native code artifacts☆20Apr 29, 2021Updated 4 years ago
- Integration with Slack API☆15Dec 10, 2023Updated 2 years ago
- Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own in…☆4,335Feb 7, 2026Updated last week
- Falcon Integration Gateway (FIG)☆21Feb 6, 2026Updated last week
- PowerShell Tools Documentation☆21Aug 5, 2024Updated last year
- Welcome to the NCC Group Threat Intelligence Alert repo, here you will find the alerts which we have raised to our customers regarding in…☆25Feb 6, 2023Updated 3 years ago
- ☆23Feb 2, 2026Updated last week
- Wazuh - Puppet module☆53Updated this week
- Identity developer dashboard☆28Updated this week
- Simple SOAR (Security Orchestration, Automation and Response) framework integrated with OPA/Rego☆24Jul 7, 2025Updated 7 months ago
- This project can be used to create AMIs based on Kali Linux, a penetration testing distribution.☆21Jan 12, 2026Updated last month
- A web front-end providing a REST-ful API to mount and unmount forensic disk images☆22Updated this week
- Python based client for IBM XForce Exchange☆26Aug 5, 2016Updated 9 years ago
- OpenCTI datasets☆31Nov 12, 2025Updated 3 months ago
- Generate portable TTP intelligence from a web-based report☆31Oct 24, 2022Updated 3 years ago