defenxor / dsiemLinks
Security event correlation engine for ELK stack
☆440Updated last year
Alternatives and similar repositories for dsiem
Users that are interested in dsiem are comparing it to the libraries listed below
Sorting:
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆248Updated 2 weeks ago
- DFIRTrack - The Incident Response Tracking Application☆522Updated 10 months ago
- Mapping the MITRE ATT&CK Matrix with Osquery☆800Updated 2 years ago
- Documentation of Cortex☆174Updated last year
- Suricata, Snort and Zeek IDS rule and pcap testing system☆483Updated 2 weeks ago
- MISP Docker (XME edition)☆282Updated last year
- PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform☆635Updated last week
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆148Updated 3 years ago
- Create actionable data from your Vulnerability Scans☆1,389Updated 2 years ago
- Cortex Analyzers Repository☆466Updated this week
- Documentation of TheHive☆398Updated last year
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆189Updated 4 years ago
- A curated list of awesome things related to TheHive & Cortex☆183Updated 3 years ago
- DejaVU - Open Source Deception Framework☆412Updated 2 years ago
- Actionable analytics designed to combat threats☆995Updated 3 years ago
- Suricata rules for network anomaly detection☆167Updated 3 months ago
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆461Updated this week
- Open Source SIEM (Security Information and Event Management system).☆217Updated last year
- A set of Zeek scripts to detect ATT&CK techniques.☆599Updated last year
- Phantom Community Playbooks☆508Updated last week
- Wazuh - Ruleset☆463Updated 10 months ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆566Updated 7 months ago
- Python API Client for TheHive☆231Updated this week
- Extract and aggregate threat intelligence.☆875Updated last year
- Scirius is a web application for Suricata ruleset management and threat hunting.☆657Updated last month
- Zeek-Formatted Threat Intelligence Feeds☆374Updated this week
- Suricata IDS/IPS log analytics using the Elastic Stack.☆239Updated 4 years ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆800Updated 5 years ago
- A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…☆440Updated last year
- A curated list of awesome resources related to Mitre ATT&CK™ Framework☆609Updated 5 years ago