corelight / corelight-client
Corelight Sensor API command-line client
☆17Updated last week
Alternatives and similar repositories for corelight-client:
Users that are interested in corelight-client are comparing it to the libraries listed below
- Zeek package for tracking long connections to report them before they have completed.☆30Updated last month
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 4 years ago
- Node.js SDK for IBM X-Force Exchange☆14Updated 6 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- Zeek support for Community ID flow hashing.☆35Updated last year
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 2 years ago
- Puppet module that hardens Windows Server to DoD STIG compliance☆14Updated 5 years ago
- Dashboards and loader for ROCK NSM dashboards☆48Updated 2 years ago
- Bro script package to create JSON formatted logs to stream into data analysis systems.☆28Updated last year
- Bro scripts to monitor for new hosts within a subnet range that aren't whitelisted/vetted.☆13Updated 11 years ago
- Tool for managing Zeek deployments.☆54Updated this week
- Splunk custom alert action for Atlassian JIRA☆18Updated 6 years ago
- Documentation for Zeek☆50Updated this week
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…☆16Updated 3 years ago
- misp-cloud - Cloud-ready images of MISP☆72Updated 2 years ago
- A Python implementation of the Community ID flow hashing standard☆23Updated last year
- Build Automated Machine Images for MISP☆28Updated last year
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆18Updated 11 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆53Updated 3 months ago
- Best practices in threat intelligence☆46Updated 2 years ago
- Web-based sensor management suite☆19Updated 2 years ago
- Information relating to the governance of the Open Cybersecurity Alliance (OCA) OASIS Open Project. https://github.com/opencybersecuritya…☆25Updated 3 months ago
- Legal, procedural and policies document templates for operating MISP and information sharing communities☆37Updated 2 years ago
- Materials used and mentioned during my talk at SANS Cloud Security Summit 2018 in San Diego☆23Updated 7 years ago
- Docker files for Security Onion☆40Updated 4 years ago
- Zeek package for detecting the Eternal* exploits and a set of SMBv1 protocol violations.☆19Updated 2 years ago
- Tools to assist in forensicating docker☆81Updated 2 weeks ago
- ☆24Updated 5 years ago
- Specifications used in the MISP project including MISP core format☆51Updated 2 months ago