Alternatives and similar repositories for GettingStartedWithELK:

Users that are interested in GettingStartedWithELK are comparing it to the libraries listed below

• Benster900 / BlogProjects
  Various blog post projects.
  ☆10Updated 9 months ago
• ikoniaris / kippo2elasticsearch
  Transfer Kippo data to ElasticSearch
  ☆18Updated 9 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• set-element / auditdBroFramework
  The Auditd Framework logs and applies security policy to linux auditd data
  ☆15Updated 7 years ago
• MalwareSoup / sysmon2neo4j
  ☆15Updated 7 years ago
• farhanfaisal / DNSblacklist
  A shell script to download malware domains from various sources, and configuring unbound DNS config file to be used as a local recursive …
  ☆18Updated 10 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• zeek / zeek-agent-framework
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Updated 4 years ago
• jvehent / AutOssec
  Ossec cookbook for Chef, with secure & automated key management
  ☆21Updated 11 years ago
• darvid / nessusbeat
  A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.
  ☆31Updated 7 years ago
• initconf / brocon-15
  brocon-15 scripts
  ☆13Updated 7 years ago
• auditNG / auditNG
  ☆11Updated 7 years ago
• ncsa / ossec-tools
  Scripts and integrations for OSSEC
  ☆39Updated 9 years ago
• kost / docker-cowrie
  A Docker container for Cowrie - SSH honeypot based on kippo
  ☆10Updated 9 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• Security-Onion-Solutions / securityonion-docker-hh
  ☆20Updated 4 years ago
• iSECPartners / scout
  AWS EC2 and S3 Security Auditing Tool
  ☆41Updated 11 years ago
• corelan / dnshjmon
  dnshjmon is a free tool to monitor public DNS records and report hijacks
  ☆91Updated 11 years ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 9 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 7 years ago
• Malicious-Entity / Get-Entity
  Scripts to query local admins quickly
  ☆9Updated 9 years ago
• logstash-plugins / logstash-codec-nmap
  NMap XML decoding for logstash
  ☆28Updated 2 years ago
• SubtleScope / logfile-generators
  Series of scripts to generate fake logs for use in cyber exercises.
  ☆17Updated 9 years ago
• 9b / pcap_tools
  Help summarize a PCAP file
  ☆33Updated 13 years ago
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago
• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 7 years ago
• jasonish / docker-suricata-elk
  [ABANDONED] A Docker container running Suricata and the ELK stack.
  ☆22Updated 9 years ago
• PingTrip / broctl-setcap
  Broctl plugin for automatically executing 'setcap' on each node after an install
  ☆13Updated 4 years ago
• Graylog2 / graylog-plugin-cef
  [DEPRECATED] CEF (Common Event Format) input plugin for Graylog
  ☆10Updated 3 years ago