Alternatives and similar repositories for cp-zeek

Users that are interested in cp-zeek are comparing it to the libraries listed below

• michaelpeacock / kafka-sigma-streams
  ☆19Updated 3 years ago
• splunk / kafka-connect-splunk
  Kafka connector for Splunk
  ☆96Updated last week
• wlaforest / KSQLGeo
  Geospatial UDFs for KSQL
  ☆22Updated 4 years ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• elastic / ecs-mapper
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆54Updated 3 years ago
• walterra / jupyter2kibana
  A Workflow for Data Scientists to bring Jupyter Notebook Visualizations to Kibana Dashboards
  ☆45Updated 2 years ago
• MalwareSoup / sysmon2neo4j
  ☆15Updated 8 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated 2 weeks ago
• walterra / kibana-milestones-vis
  Kibana Milestones Visualization
  ☆90Updated 2 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆36Updated 2 years ago
• Cargill / OpenSIEM-Logstash-Parsing
  SIEM Logstash parsing for more than hundred technologies
  ☆187Updated last week
• uniberg / kbn_sankey_vis
  Sankey diagram for Kibana visualize.
  ☆31Updated 9 months ago
• NVISOsecurity / ee-outliers
  Open-source framework to detect outliers in Elasticsearch events
  ☆209Updated 2 years ago
• endgameinc / eql
  ☆222Updated last year
• hvandenb / splunk-elasticsearch
  A search command for Splunk which will allow you to search Elastic Search and display the results in the Splunk GUI
  ☆69Updated last month
• Nclose-ZA / elastalert_hive_alerter
  This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.
  ☆27Updated 4 years ago
• hire-vladimir / SA-cim_vladiator
  Data validator agains Splunk Common Information Model (CIM)
  ☆76Updated last year
• rocknsm / rock-dashboards
  Dashboards and loader for ROCK NSM dashboards
  ☆49Updated 2 years ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 3 years ago
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆34Updated 2 years ago
• JohnnyMirza / confluent_splunk_demo
  Confluent s2s Demo
  ☆10Updated 2 years ago
• empow / logstash-parsers
  ☆38Updated 5 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆60Updated 4 years ago
• TAXIIProject / java-taxii
  A Java library for handling TAXII Messages and invoking TAXII Services.
  ☆20Updated 6 years ago
• demisto / COPS
  Collaborative Open Playbook Standard
  ☆158Updated 2 years ago
• kpolley / RELK
  RELK -- The Research Elastic Stack (Kafka, Beats, Zookeeper, Logstash, ElasticSearch, Kibana, Spark, & Jupyter -- All in Docker)
  ☆26Updated 5 years ago
• atc-project / atc-mitigation
  Actionable analytics designed to combat threats based on MITRE's ATT&CK.
  ☆23Updated 6 years ago
• splunk / mltk-algo-contrib
  ☆91Updated 2 years ago
• carolynduby / ApacheMetronWorkshop
  Apache Metron Workshop Lab materials and instructions.
  ☆35Updated 5 years ago
• atc-project / react-navigator
  Web app that provides basic navigation and annotation of ATT&CK matrices
  ☆17Updated 4 years ago