amitn322 / blackeskLinks
BLACK ESK SIEM is a SIEM platform built with Elasticsearch, Syslog-Ng and Kibana
☆28Updated 2 years ago
Alternatives and similar repositories for blackesk
Users that are interested in blackesk are comparing it to the libraries listed below
Sorting:
- This is a collection of Security Baselines that I use in my virtual lab environment.☆22Updated 5 years ago
- Some resources to facilitate my blog on auditd for security monitoring☆13Updated 2 years ago
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆62Updated 2 months ago
- An experimental Velociraptor implementation using cloud infrastructure☆26Updated 2 months ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆34Updated 3 years ago
- Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries☆52Updated 3 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆36Updated 4 years ago
- Deploy an "illegal" SOC to manage vulnerabilities on your city servers in minutes.☆20Updated 3 years ago
- ThreatBox is a standard and controlled Linux based attack platform. I've used a version of this for years. It started as a collection of …☆76Updated last year
- Defence Against the Dark Arts☆34Updated 6 years ago
- Python command line tool used for generating GIAC Certification indexes.☆29Updated 2 years ago
- Web interface for monitoring and interacting with Netflow data stored in Silk repositories.☆13Updated 6 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 4 years ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆93Updated 4 years ago
- A MITRE ATT&CK Lookup Tool☆46Updated last year
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆79Updated 3 months ago
- THOR MITRE ATT&CK Framework Coverage☆25Updated 5 years ago
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆12Updated 5 years ago
- ☆78Updated 2 weeks ago
- Pure Honeypots with an automated bash script☆21Updated 4 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Updated 4 years ago
- Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.☆45Updated 5 years ago
- Accompanying documentation, images, source code and other stuff from the cybernomad.online blog☆27Updated 5 years ago
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆23Updated last year
- TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response☆13Updated 5 years ago
- Incident Response Network Tools☆24Updated 4 years ago
- Ransomware Simulator for Red/Blue teams to test their defences.☆19Updated 3 years ago
- Lokix Platform is a free open-source solution to help blue teams and threat hunters use Loki Scanner to sweep enterprise networks☆25Updated 5 years ago
- GUI tool which enables you to parse nessus scan files from Tenable Nessus and Tenable Security Center, and exports results to a spreadshe…☆110Updated last week
- CSI SIEM☆109Updated 3 years ago