Alternatives and similar repositories for fw1-loggrabber

Users that are interested in fw1-loggrabber are comparing it to the libraries listed below

• PaloAltoNetworks / minemeld
  Main MineMeld documentation repo
  ☆378Updated 7 years ago
• rocknsm / rock
  Automated deployment scripts for the RockNSM network hunting distribution.
  ☆456Updated 2 years ago
• IBM / api-samples
  Samples code that uses QRadar API's
  ☆208Updated 5 years ago
• PaloAltoNetworks / minemeld-core
  Engine of MineMeld
  ☆140Updated 2 years ago
• csirtgadgets / massive-octo-spice
  DEPRECATED - USE v3 (bearded-avenger)
  ☆229Updated 7 years ago
• HASecuritySolutions / Logstash
  Contains Logstash related content including tons of Logstash configurations
  ☆254Updated 4 years ago
• PaloAltoNetworks / minemeld-node-prototypes
  Prototypes for MineMeld nodes
  ☆39Updated 3 years ago
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆212Updated 7 years ago
• EmersonElectricCo / fsf
  File Scanning Framework
  ☆293Updated 4 years ago
• TheHive-Project / TheHiveDocs
  Documentation of TheHive
  ☆400Updated last year
• opendxl / opendxl-client-python
  OpenDXL Python Client
  ☆94Updated 7 months ago
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆432Updated last year
• CrowdStrike / cs-bro
  Bro scripts written by CrowdStrike Services
  ☆148Updated 4 years ago
• KPN-CISO / kpn-security-policy
  KPN Security Policy
  ☆147Updated 4 years ago
• doksu / splunk_auditd
  Splunk App for Linux Auditd
  ☆57Updated 4 years ago
• STIXProject / python-stix
  A Python library for parsing, manipulating, and generating STIX content.
  ☆245Updated 3 years ago
• aplura / Tango
  Honeypot Intelligence with Splunk
  ☆255Updated 6 years ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆202Updated 3 years ago
• libresec / duo-log-grabber
  Grabs the administrator and authentication logs from the Duo Security API and sends CEF-formatted syslog.
  ☆28Updated 9 years ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆479Updated 11 months ago
• shadow-box / Palo-Alto-Networks-ELK-Stack
  Configuration for a Palo Alto Networks fed ELK Stack with Visualizations
  ☆73Updated 6 years ago
• mlsecproject / combine
  Tool to gather Threat Intelligence indicators from publicly available sources
  ☆658Updated 6 years ago
• cvandeplas / ELK-forensics
  ELK configuration files for Forensic Analysts and Incident Handlers (unmaintained)
  ☆179Updated 6 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆168Updated 5 years ago
• doksu / selinux_policy_for_splunk
  SELinux Policy for Splunk
  ☆56Updated 6 years ago
• austin-taylor / flare
  An analytical framework for network traffic and behavioral analytics
  ☆456Updated 2 years ago
• pevma / rule2alert
  Improvements of/over the original rule2alert
  ☆56Updated 10 years ago
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆809Updated 5 years ago
• carbonblack / cbapi-python
  Carbon Black API - Python language bindings
  ☆145Updated last year
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆664Updated last week