blookot / elastic-releasesLinks
Listing releases of the Elastic stack with new features and references
☆17Updated last month
Alternatives and similar repositories for elastic-releases
Users that are interested in elastic-releases are comparing it to the libraries listed below
Sorting:
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- Converts Netwitness log parser configuration to Logstash configuration☆20Updated 4 years ago
- Script to create MITRE ATT&CK Navigator layers from the annotated detection rules in Elastic Security (Kibana).☆20Updated last year
- OASIS TC Open Repository: STIX Enhancement Proposals (SEPs) https://github.com/oasis-open/cti-sep-repository☆16Updated last year
- ☆15Updated 7 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 2 years ago
- A Zeek package that detects Zoom logins and meeting joins☆12Updated 5 years ago
- Python module to use the MISP Taxonomies☆29Updated this week
- A collection of data fetchers, and simple quarterly and yearly CVE forecasting models.☆36Updated 4 months ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- Command line tool used for generating events corpus dynamically given a specific integration☆23Updated 4 months ago
- Data shipper for the Elastic Agent - single, unified way to add monitoring for logs, metrics, and other types of data to a host.☆9Updated last year
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- ☆23Updated 5 years ago
- Python tool build around GreyNoise's alpha/public API☆11Updated 6 years ago
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆54Updated 3 years ago
- Firepit - STIX Columnar Storage☆16Updated last year
- Setting up a training environment for MISP☆12Updated 2 years ago
- ☆38Updated 5 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 3 years ago
- A curses-style interface for automatic takedown notification based on MISP events.☆20Updated 4 years ago
- IntelMQ command line tool to process events and send out email notifications.☆9Updated 2 weeks ago
- Zeek package for tracking long connections to report them before they have completed.☆30Updated 4 months ago
- Sankey diagram for Kibana visualize.☆31Updated 6 months ago
- A web front-end providing a REST-ful API to mount and unmount forensic disk images☆24Updated last week
- ☆38Updated 7 months ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Updated 2 years ago
- A Workflow for Data Scientists to bring Jupyter Notebook Visualizations to Kibana Dashboards☆45Updated 2 years ago
- Documentation for Zeek☆50Updated this week
- Zeek support for Community ID flow hashing.☆35Updated last year