StamusNetworks / KTS6
Kibana 6 Templates for Suricata IDPS Threat Hunting
☆25Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for KTS6
- collector/runner☆65Updated last year
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- OwlH Master API☆24Updated 6 months ago
- ☆20Updated 4 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collection☆34Updated 4 years ago
- ☆12Updated 5 years ago
- Security Onion Elastic Stack☆46Updated 3 years ago
- Detect HTTP stalling attacks like slowloris with Bro☆19Updated 6 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆52Updated this week
- OwlH Master API Web User Interface☆12Updated 6 months ago
- Vulnerability Assessment Module - OpenVas with Elastic stack using VulnWhisperer☆19Updated 5 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆28Updated 6 years ago
- Wazuh - Splunk App☆50Updated last month
- Build Automated Machine Images for MISP☆28Updated last year
- ☆33Updated 3 years ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- A Yara Lua output script for Suricata☆19Updated 5 years ago
- Zeek package for tracking long connections to report them before they have completed.☆29Updated 2 years ago
- Porting Suricata to Bro signatures☆6Updated 5 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated 8 months ago
- Top DNS Measurement for Bro☆11Updated 4 years ago
- Bro scripts for the ROCK platform. http://rocknsm.io☆33Updated last year
- How to send structured Snort IDS alert logs into Graylog☆27Updated last year
- automate your MISP installs☆66Updated 4 years ago
- ☆34Updated 3 years ago
- Very basic CLI SIEM (Security Information and Event Management system).☆35Updated 6 years ago
- Scripts used to create ISO installers of ROCK for offline installation.☆10Updated last year
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆33Updated 5 years ago