StamusNetworks / KTS7
Kibana 7 Templates for Suricata IDPS Threat Hunting
☆40Updated 2 years ago
Alternatives and similar repositories for KTS7:
Users that are interested in KTS7 are comparing it to the libraries listed below
- Convert Sigma rules to Wazuh rules☆60Updated 9 months ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆87Updated 2 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆62Updated 3 years ago
- Repo Filled With Follow Along Guides☆72Updated 2 years ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆33Updated 4 years ago
- Wazuh - Splunk App☆51Updated 4 months ago
- ☆49Updated this week
- ☆48Updated last week
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆102Updated 7 months ago
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆24Updated 5 years ago
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆106Updated 2 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆50Updated 2 years ago
- ☆87Updated this week
- Suricata rules for network anomaly detection☆155Updated last week
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆85Updated 2 years ago
- ☆34Updated 4 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆68Updated last year
- ☆32Updated last week
- An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.☆15Updated 3 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆61Updated 2 years ago
- ☆18Updated 3 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- ☆48Updated 2 years ago
- A website and framework for testing NIDS detection☆56Updated 3 years ago
- Snort IDS/IPS log analytics using the Elastic Stack.☆85Updated 3 years ago