blookot / elastic-releasesLinks
Listing releases of the Elastic stack with new features and references
☆17Updated last month
Alternatives and similar repositories for elastic-releases
Users that are interested in elastic-releases are comparing it to the libraries listed below
Sorting:
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated this week
- OCA-wide documentation shared by all sub-projects and repositories☆33Updated 7 months ago
- Converts Netwitness log parser configuration to Logstash configuration☆20Updated 4 years ago
- Kestrel Jupyter Notebook Kernel☆9Updated last year
- ☆23Updated 5 years ago
- Detection-as-Code CI/CD pipeline for modern security operations (SIEM, EDR, XDR, ...)☆21Updated last month
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- ☆13Updated last week
- Elastic Security Documentation☆86Updated this week
- Zeek support for Community ID flow hashing.☆35Updated last year
- A Python implementation of the Community ID flow hashing standard☆23Updated last year
- Data shipper for the Elastic Agent - single, unified way to add monitoring for logs, metrics, and other types of data to a host.☆9Updated last year
- server for indexing and querying passive DNS observations☆46Updated 3 months ago
- Firepit - STIX Columnar Storage☆16Updated last year
- A Zeek package that detects Zoom logins and meeting joins☆12Updated 5 years ago
- The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teams☆58Updated 4 years ago
- OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…☆23Updated 2 years ago
- Information relating to the governance of the Open Cybersecurity Alliance (OCA) OASIS Open Project. https://github.com/opencybersecuritya…☆26Updated last month
- A CVRF CSAF Converter, taking care about OASIS specification.☆10Updated 3 weeks ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆14Updated 2 weeks ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- ☆28Updated 4 years ago
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆54Updated 3 years ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Updated 2 years ago
- OASIS TC Open Repository: STIX Enhancement Proposals (SEPs) https://github.com/oasis-open/cti-sep-repository☆16Updated 2 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 3 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 3 years ago
- Script to create MITRE ATT&CK Navigator layers from the annotated detection rules in Elastic Security (Kibana).☆20Updated last year