arosenmund / DCO
☆11Updated last year
Related projects: ⓘ
- Carbon Black Feeds☆70Updated last year
- Import Bro logs from SecurityOnion into Logstash☆15Updated 8 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- Integrate Zeek with Alienvault OTX☆24Updated 4 years ago
- ☆48Updated 4 years ago
- InvestigationPlaybookSpec☆72Updated 6 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆41Updated 8 years ago
- A Splunk app with saved reports derived from Sigma rules☆72Updated 6 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆30Updated 7 months ago
- Network Forensics Bro scripts & pcap samples☆62Updated 10 years ago
- Salt States for Configuring the SIFT Workstation☆93Updated this week
- MineMeld nodes for MISP☆18Updated 7 months ago
- ☆55Updated 2 years ago
- Bro scripts for the ROCK platform. http://rocknsm.io☆33Updated last year
- ☆48Updated 8 years ago
- ☆13Updated this week
- Powering Up Incident Response with Power-Response☆62Updated 4 years ago
- Bro Detection Scripts☆10Updated 3 years ago
- ☆53Updated this week
- WebUI of MineMeld☆43Updated last year
- Volatility plugins developed and maintained by the community☆21Updated 6 years ago
- The Bro/Zeek language cheat sheet☆49Updated 11 years ago
- A website and framework for testing NIDS detection☆56Updated 3 years ago
- Collecting & Hunting for IOCs with gusto and style☆116Updated 6 years ago
- Splunk Boss of the SOC v1 data set.☆111Updated 6 years ago
- Python library for the ArcSight logger REST API☆27Updated 2 years ago
- Connector for pulling and converting STIX information from TAXII Service Providers into CB Feeds.☆15Updated 2 years ago
- Dashboards and loader for ROCK NSM dashboards☆47Updated last year
- A Splunk app to use MISP in background☆109Updated 9 months ago