cert-ee / s4aLinks
S4A main repository. SaltStack states, install script and build scripts
☆26Updated last week
Alternatives and similar repositories for s4a
Users that are interested in s4a are comparing it to the libraries listed below
Sorting:
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Generates visualizations from the output of flow tools such as SiLK.☆35Updated 8 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- ☆33Updated 5 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- server for indexing and querying passive DNS observations☆46Updated 3 weeks ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆121Updated 4 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44Updated last year
- A RESTful API frontend for Stenographer☆54Updated 2 years ago
- stoQ Public Plugins☆71Updated 2 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 6 years ago
- Wireshark plugin to display Suricata analysis info☆95Updated 3 years ago
- ☆20Updated 5 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.☆81Updated 4 months ago
- This repository hosts files relating to the TF-CSIRT Reference Security Incident Taxonomy Working Group.☆67Updated 3 months ago
- ☆85Updated 11 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆27Updated 5 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- Expandable Defensive Cyber Operations Platform☆43Updated 2 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Updated 2 years ago
- Passive DNS V2☆60Updated 11 years ago
- Splunk integration with MISP☆12Updated 7 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- Zeek support for Community ID flow hashing.☆36Updated 2 years ago