Alternatives and similar repositories for GettingStartedWithELK

Users that are interested in GettingStartedWithELK are comparing it to the libraries listed below

• ncsa / ossec-tools
  Scripts and integrations for OSSEC
  ☆41Updated 9 years ago
• danielguerra69 / bro-debian-elasticsearch
  bro on debian with elasticsearch support
  ☆24Updated 8 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 9 years ago
• farhanfaisal / DNSblacklist
  A shell script to download malware domains from various sources, and configuring unbound DNS config file to be used as a local recursive …
  ☆19Updated 11 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• logstash-plugins / logstash-codec-nmap
  NMap XML decoding for logstash
  ☆28Updated 3 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆33Updated 5 years ago
• StamusNetworks / KTS
  Kibana 4 Templates for Suricata IDPS
  ☆33Updated 9 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• BinaryDefense / auto-ossec
  ☆142Updated last year
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 10 years ago
• ikoniaris / kippo2elasticsearch
  Transfer Kippo data to ElasticSearch
  ☆18Updated 10 years ago
• initconf / brocon-15
  brocon-15 scripts
  ☆13Updated 8 years ago
• hillar / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch
  ☆61Updated 8 years ago
• aabed / dockpot
  ☆49Updated 10 years ago
• Security-Onion-Solutions / securityonion-setup
  ☆36Updated 5 years ago
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated this week
• mandiant / synfulknock
  ☆49Updated 10 years ago
• CIRCL / cve-portal
  Common Vulnerabilities and Exposures - Portal. Archived and now replaced by vulnerability-lookup.org
  ☆87Updated 9 months ago
• dnlongen / Snort-DNS
  Snort rules to detect local malware, phishing, and adult content by inspecting DNS responses from OpenDNS
  ☆52Updated 9 years ago
• hillar / vagrant_moloch_bro_suricata
  vagrant multi-machine: Moloch, Bro,Suricata,ElasticSearch,Kibana
  ☆41Updated 11 years ago
• pevma / Suricata-Logstash-Templates
  Templates for Kibana/Logstash to use with Suricata IDPS
  ☆81Updated 9 years ago
• TravisFSmith / MyBroElk
  Scripts for Bro IDS and ELK Stack
  ☆57Updated 10 years ago
• corelan / dnshjmon
  dnshjmon is a free tool to monitor public DNS records and report hijacks
  ☆91Updated 11 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆106Updated 4 years ago
• alphasoc / nfr
  A lightweight tool to score network traffic and flag anomalies
  ☆123Updated last year
• thomaspatzke / logstash-linux
  Logstash Configuration for Linux Logs (Authentication, Apache, Mail)
  ☆92Updated 6 years ago