Converts Netwitness log parser configuration to Logstash configuration
☆20Sep 10, 2020Updated 5 years ago
Alternatives and similar repositories for rsa2elk
Users that are interested in rsa2elk are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Web UI for testing Elastic Beats processors☆18Feb 22, 2026Updated last month
- Parse Suricata rules☆14Aug 1, 2023Updated 2 years ago
- This repository contains a few examples of actions that can be added to rules within Elastic Security.☆24Feb 6, 2025Updated last year
- DGA detection project that aims to rapidly build and deploy a machine learning system to detect domain names generated by malware.☆18Jan 29, 2019Updated 7 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆33Apr 8, 2026Updated last week
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Jul 28, 2023Updated 2 years ago
- Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …☆27Jul 30, 2024Updated last year
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆53Mar 9, 2022Updated 4 years ago
- SIEM Logstash parsing for more than hundred technologies☆194Updated this week
- A few quick recipes for those that do not have much time during the day☆22Oct 28, 2024Updated last year
- Listing releases of the Elastic stack with new features and references☆19Feb 4, 2026Updated 2 months ago
- ☆12Apr 22, 2022Updated 3 years ago
- Restful A2Billing APIs in Flask☆21Nov 27, 2015Updated 10 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆24Jul 9, 2021Updated 4 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Filebeat module for Squid access.log + Kibana dashboards. ELK 7.x☆17Sep 19, 2020Updated 5 years ago
- A script to create and assign SOP tasks into the cases☆20Aug 16, 2020Updated 5 years ago
- go-ttlmap is a Go package that provides an in-memory key-value cache with notification events for storing TTL-based expirable items.☆24Jan 19, 2017Updated 9 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Jan 6, 2021Updated 5 years ago
- ☆12Apr 6, 2026Updated last week
- Flexmonster Pivot Table & Charts plugin for Kibana☆64Jun 20, 2023Updated 2 years ago
- Ingest Nessus files into Elasticsearch using PowerShell!☆21Apr 26, 2024Updated last year
- WebUI of MineMeld☆42Mar 16, 2023Updated 3 years ago
- Netwitness Maltego integration Project☆18May 9, 2017Updated 8 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- The "DFUR" Splunk application and data that was presented at the 2020 SANS DFIR Summit.☆13Sep 9, 2020Updated 5 years ago
- A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.☆12Jun 23, 2025Updated 9 months ago
- 🎺☆13Nov 10, 2025Updated 5 months ago
- Web-based sensor management suite☆20Mar 2, 2023Updated 3 years ago
- Ansible playbook for installing MineMeld on Linux☆47Mar 18, 2021Updated 5 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19May 11, 2021Updated 4 years ago
- Dockerfile and artifacts for running a self-contained HDP 2.3 "cluster" in a docker container☆10Aug 30, 2016Updated 9 years ago
- Matt's DFIR blog☆14Jul 28, 2025Updated 8 months ago
- check_cisco_ucs is a Nagios plugin to monitor Cisco UCS rack and blade center hardware☆18Updated this week
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Jupyter Notebooks for Digital Forensics & Incident Response☆10Nov 23, 2021Updated 4 years ago
- Documentation for DFIR ORC, artefact collection tool dedicated to Microsoft Windows☆12Updated this week
- Define pytest fixtures with lambda functions☆16Jan 13, 2025Updated last year
- a library of Logstash pipeline configuration files mapping data to the Elastic Common Schema☆10Feb 28, 2021Updated 5 years ago
- A rust library for connecting devices to Microsoft Azure IoT Hub☆18Sep 23, 2025Updated 6 months ago
- Import specific data sources into the Sigma generic and open signature format.☆79May 6, 2022Updated 3 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆54Mar 21, 2026Updated 3 weeks ago