blookot / elastic-releases

Related projects ⓘ

Alternatives and complementary repositories for elastic-releases

• blookot / rsa2elk
  Converts Netwitness log parser configuration to Logstash configuration
  ☆20Updated 4 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated 2 weeks ago
• elastic / elastic-agent-shipper
  Data shipper for the Elastic Agent - single, unified way to add monitoring for logs, metrics, and other types of data to a host.
  ☆9Updated last year
• LogCraftIO / logcraft-cli
  Detection-as-Code CI/CD pipeline for modern security tools (SIEM, EDR, XDR, ...)
  ☆16Updated 4 months ago
• stahler / QRadar
  Using QRadar API
  ☆20Updated 6 years ago
• elastic / ecs-mapper
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆54Updated 2 years ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 4 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆11Updated 4 years ago
• cocaman / urlhaus
  ☆27Updated 6 years ago
• neu5ron / es_stk
  ☆13Updated 2 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated 11 months ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆46Updated 2 years ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆37Updated 2 years ago
• gnxsecurity / gnx-threat-intelligence
  A commercial grade threat intelligence feed thats validated and updated every half hour.
  ☆20Updated last year
• elastic / security-docs
  Elastic Security Documentation
  ☆69Updated this week
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆34Updated last year
• ExabeamLabs / Content-Library-CIM2
  ☆16Updated last month
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆29Updated 2 years ago
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆19Updated 2 years ago
• nabilbendafi / country-flag-fieldformatters
  Country flag FieldFormat Plugin for Kibana 7
  ☆17Updated 4 years ago
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆30Updated 5 months ago
• counteractive / incident-response-collector
  ☆14Updated 4 years ago
• Truvis / SplunkDashboards
  Collection of Dashboards for Threat Hunting and more!
  ☆59Updated 4 years ago
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆15Updated 5 months ago
• corelight / Corelight-Ansible-Roles
  Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…
  ☆16Updated 3 years ago
• zeek / zeek-docs
  Documentation for Zeek
  ☆50Updated this week
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆39Updated 2 years ago