cleesmith / unifiedbeatLinks
Unifiedbeat reads records from Unified2 binary files generated by network intrusion detection software and indexes the records in Elasticsearch.
☆30Updated 8 years ago
Alternatives and similar repositories for unifiedbeat
Users that are interested in unifiedbeat are comparing it to the libraries listed below
Sorting:
- (OBSOLETE) Plugins for Bro☆53Updated 7 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44Updated last year
- Logging plugin to bro to send logs to a Kafka broker☆20Updated 7 years ago
- Time-Machine Dynamic Bulk Packet Recorder☆36Updated 2 months ago
- Dockerfiles for NSM tools☆84Updated 8 years ago
- Bro-IDS scripts☆50Updated 8 years ago
- User interface for OpenSOC☆100Updated 9 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- ☆71Updated 3 years ago
- Bro Snippets☆21Updated 10 years ago
- Meeting notes☆15Updated 9 years ago
- A Go(lang) Library for Handling Snort and Suricata unified2 Log Files☆17Updated 3 years ago
- PassiveDNS in Go☆125Updated 5 years ago
- IP geolocation for authentication events with MozDef☆10Updated 6 years ago
- Bro scripts for the ROCK platform. http://rocknsm.io☆33Updated last year
- Misc. Bro scripts☆64Updated 8 years ago
- vagrant multi-machine: Moloch, Bro,Suricata,ElasticSearch,Kibana☆41Updated 10 years ago
- Analysis scripts for the Bro Intrusion Detection System☆58Updated 11 years ago
- A search command for Splunk which will allow you to search Elastic Search and display the results in the Splunk GUI☆69Updated 8 years ago
- Bro scripts written by CrowdStrike Services☆146Updated 4 years ago
- Packetpig - Open Source Big Data Security Analytics☆298Updated 7 years ago
- Scripts and integrations for OSSEC☆40Updated 9 years ago
- A collection of Bro scripts I've written☆40Updated 10 years ago
- OpenFPC, Open Source Full Packet Capture☆72Updated 6 years ago
- module for osquery to load Bro logs into tables☆28Updated 10 years ago
- Rule sets for Sagan☆104Updated 4 years ago
- ☆16Updated 6 years ago
- Improvements of/over the original rule2alert☆56Updated 10 years ago
- ☆24Updated 5 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago