corelight / corelight-clientLinks
Corelight Sensor API command-line client
☆17Updated last month
Alternatives and similar repositories for corelight-client
Users that are interested in corelight-client are comparing it to the libraries listed below
Sorting:
- Node.js SDK for IBM X-Force Exchange☆15Updated 7 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- Zeek package for tracking long connections to report them before they have completed.☆31Updated 3 months ago
- Docker files for Security Onion☆42Updated 4 years ago
- Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…☆16Updated 4 years ago
- Web-based sensor management suite☆20Updated 2 years ago
- A curated list of awesome Splunk links☆40Updated 9 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated 3 weeks ago
- Kibana nodejs/hapi plugin adds support for LDAP and 2-factor OTP authentication to dashboards.☆51Updated 2 years ago
- Documentation for Zeek☆50Updated last week
- Zeek support for Community ID flow hashing.☆37Updated 2 years ago
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆18Updated 11 years ago
- Materials used and mentioned during my talk at SANS Cloud Security Summit 2018 in San Diego☆23Updated 7 years ago
- Repository for various tools around security☆41Updated last year
- Wazuh - RESTful API☆77Updated last year
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated 2 years ago
- LastArk - Giving LastPass Enterprise the Power of CyberArk's PIM☆15Updated 7 years ago
- SIAC is an enterprise SIEM built on open-source technology.☆116Updated 6 years ago
- Dashboards and loader for ROCK NSM dashboards☆49Updated 2 years ago
- Understand OVAL results in a blink of an eye☆35Updated 3 years ago
- Zeek package for detecting the Eternal* exploits and a set of SMBv1 protocol violations.☆19Updated 2 months ago
- Tools to assist in forensicating docker☆84Updated 7 months ago
- Puppet module that hardens Windows Server to DoD STIG compliance☆14Updated 6 years ago
- Splunk Alert Manager with advanced reporting on alerts, workflows (modify assignee, status, severity) and auto-resolve features☆81Updated 3 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- Best practices in threat intelligence☆48Updated 2 years ago
- A Security Results Viewer for the web with storage, teams and history☆35Updated 2 years ago
- Pre-configured environment that supports the development and running of OpenDXL solutions☆13Updated 4 years ago
- Example Suricata rules implementing some of my detection tactics☆22Updated 2 years ago
- ☆34Updated 4 years ago