cleesmith / unifiedbeatLinks
Unifiedbeat reads records from Unified2 binary files generated by network intrusion detection software and indexes the records in Elasticsearch.
☆30Updated 9 years ago
Alternatives and similar repositories for unifiedbeat
Users that are interested in unifiedbeat are comparing it to the libraries listed below
Sorting:
- (OBSOLETE) Plugins for Bro☆53Updated 7 years ago
- User interface for OpenSOC☆100Updated 9 years ago
- PassiveDNS in Go☆125Updated 5 years ago
- Packetpig - Open Source Big Data Security Analytics☆298Updated 7 years ago
- Logging plugin to bro to send logs to a Kafka broker☆20Updated 7 years ago
- Dockerfiles for NSM tools☆84Updated 8 years ago
- Docker based Suricata, Elasticsearch, Logstash, Kibana, Scirius aka SELKS☆184Updated 2 years ago
- Bro-IDS scripts☆50Updated 8 years ago
- OpenFPC, Open Source Full Packet Capture☆72Updated 6 years ago
- Time-Machine Dynamic Bulk Packet Recorder☆36Updated 3 months ago
- Bro scripts for the ROCK platform. http://rocknsm.io☆34Updated 2 years ago
- ☆71Updated 3 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44Updated last year
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆228Updated 4 years ago
- Extensible set of Storm topologies and topology attributes for streaming, enriching, indexing, and storing telemetry in Hadoop.☆132Updated last year
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Bro IDS programs collection.☆145Updated 5 years ago
- Misc. Bro scripts☆64Updated 8 years ago
- Bro scripts written by CrowdStrike Services☆147Updated 4 years ago
- Improvements of/over the original rule2alert☆56Updated 10 years ago
- vagrant multi-machine: Moloch, Bro,Suricata,ElasticSearch,Kibana☆41Updated 10 years ago
- Bro IDS Dockerfile☆129Updated 5 years ago
- A search command for Splunk which will allow you to search Elastic Search and display the results in the Splunk GUI☆69Updated 8 years ago
- Enterprise Log Search and Archive☆209Updated 6 years ago
- Passive Real-time Asset Detection System☆244Updated last year
- Rule sets for Sagan☆105Updated 4 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch☆61Updated 8 years ago
- Suricata Extreme Performance Tuning guide☆211Updated 7 years ago
- Isolated, Scalable, & Lightweight Environment for Training☆111Updated 6 years ago
- ELK configuration files for Forensic Analysts and Incident Handlers (unmaintained)☆179Updated 6 years ago