cert-ee / s4a
S4A main repository. SaltStack states, install script and build scripts
☆25Updated last week
Related projects ⓘ
Alternatives and complementary repositories for s4a
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated 11 months ago
- ☆33Updated 4 years ago
- Zeek package to generate a SMB client fingerprint☆26Updated 4 years ago
- Detect HTTP stalling attacks like slowloris with Bro☆19Updated 6 years ago
- A website and framework for testing NIDS detection☆56Updated 3 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- Generates visualizations from the output of flow tools such as SiLK.☆35Updated 7 years ago
- References for FIRST CTI 2019 Symposium presentation☆23Updated 5 years ago
- IntelMQ command line tool to process events and send out email notifications.☆9Updated last month
- server for indexing and querying passive DNS observations☆44Updated 9 months ago
- ☆85Updated 11 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- Scripts for TheHive.☆22Updated 4 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- This repository hosts files relating to the TF-CSIRT Reference Security Incident Taxonomy Working Group.☆64Updated last month
- scan-detection policies for bro☆15Updated last year
- Scripts for accessing and transforming cyber threat intelligence☆25Updated 8 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆33Updated 5 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 7 years ago
- Imports Alienvault OTX pulses to a MISP instance☆52Updated 3 years ago
- Integrate Zeek with Alienvault OTX☆24Updated 4 years ago
- A collection of typical false positive indicators☆54Updated 3 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated 8 months ago
- Security Onion Elastic Stack☆46Updated 3 years ago
- ☆34Updated 3 years ago
- Splunk integration with MISP☆12Updated 6 years ago
- CIFv3 DeploymentKit☆63Updated 4 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆37Updated last year