cmu-sei / greybox

Related projects: ⓘ

• cmu-sei / topgen
  Scripts to generate an Internet simulation
  ☆34Updated last month
• da667 / AutoMISP
  automate your MISP installs
  ☆66Updated 4 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆56Updated 3 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆41Updated 8 years ago
• weslambert / securityonion-misp
  ☆34Updated 3 years ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆46Updated last week
• sans-blue-team / sec530-wiki
  ☆51Updated 3 years ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆70Updated 2 years ago
• securitydistractions / elastimispstash
  ☆29Updated 3 years ago
• mayhemiclabs / weblabyrinth
  A system that creates a bogus web structure to entrap and delay web scanners
  ☆52Updated 3 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆67Updated 10 months ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆121Updated 3 years ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆99Updated 3 months ago
• carbonblack / cbfeeds
  Carbon Black Feeds
  ☆70Updated last year
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆93Updated this week
• SMAPPER / NXLog-AutoConfig
  ☆48Updated 4 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 5 years ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆24Updated 4 years ago
• chrissanders / idh
  Intrusion Detection Honeypots Book Code
  ☆23Updated 4 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆76Updated 3 years ago
• CriticalPathSecurity / zeek-scripts
  Bro Detection Scripts
  ☆10Updated 3 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆92Updated 2 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 6 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆51Updated 2 months ago
• sans-blue-team / freq.py
  Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…
  ☆123Updated last year
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆109Updated 9 months ago
• CIS-CERT / CIS-ESP
  ☆44Updated this week
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆18Updated 7 months ago
• thomaspatzke / elk-detection-lab
  An ELK environment containing interesting security datasets.
  ☆131Updated 4 years ago