amitn322 / blackesk
BLACK ESK SIEM is a SIEM platform built with Elasticsearch, Syslog-Ng and Kibana
☆28Updated 2 years ago
Alternatives and similar repositories for blackesk:
Users that are interested in blackesk are comparing it to the libraries listed below
- Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.☆44Updated 4 years ago
- Defence Against the Dark Arts☆34Updated 5 years ago
- Ansible Playbook to install the ELK Stack☆43Updated 4 years ago
- automate your MISP installs☆68Updated 4 years ago
- FIles and guides related to using Elasticstack as a SIEM☆12Updated 4 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆34Updated 3 years ago
- unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Andro…☆35Updated 4 months ago
- A curated list of awesome threat detection and hunting resources☆18Updated 6 years ago
- Hunting Newly Registered Domains☆10Updated 6 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 3 years ago
- Snapshot, patch, health-check, and potentially roll-back Windows VMs☆34Updated 7 years ago
- Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …☆27Updated 9 months ago
- Incident Response Plan for all major incidents including cheatsheets for both linux and windows☆14Updated 4 years ago
- ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)☆46Updated 4 years ago
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆63Updated 2 years ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆27Updated 4 years ago
- Scapy packet fragment reassembly engines☆33Updated 4 years ago
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- ☆15Updated 5 years ago
- Deploy an "illegal" SOC to manage vulnerabilities on your city servers in minutes.☆19Updated 2 years ago
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆24Updated 6 years ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆32Updated 2 years ago
- Corelight@Home script☆41Updated last year
- ☆16Updated 3 years ago
- Tools for Wazuh by Juan C. Tello☆14Updated 3 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 6 months ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Updated 3 years ago
- A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…☆48Updated last year
- ☆16Updated 4 years ago