dogoncouch / siemstress
Very basic CLI SIEM (Security Information and Event Management system).
☆38Updated 7 years ago
Alternatives and similar repositories for siemstress:
Users that are interested in siemstress are comparing it to the libraries listed below
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆26Updated 4 years ago
- Best practices in threat intelligence☆46Updated 2 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- The Fastest way to consume Threat Intel☆25Updated 2 years ago
- Sharing Threat Hunting runbooks☆25Updated 5 years ago
- A simple many-rules to many-files YARA scanner for incident response or malware zoos.☆26Updated 6 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 2 years ago
- Searches for Insider Threat Hunting☆31Updated 5 years ago
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.☆24Updated 8 years ago
- ☆12Updated 5 years ago
- ☆16Updated 4 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆51Updated 2 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆14Updated 3 years ago
- Powershell collection designed to assist in Threat Hunting Windows systems.☆27Updated 6 years ago
- For storing of the volumes☆4Updated 5 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 5 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆26Updated 5 years ago
- Snort_rules detection bad actors.☆28Updated 7 months ago
- Tools used by CSIRT and especially in the scope of CNW☆16Updated 6 months ago
- ☆29Updated 4 years ago
- ☆14Updated 6 years ago
- Expert Investigation Guides☆51Updated 4 years ago
- FIles and guides related to using Elasticstack as a SIEM☆12Updated 4 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 5 months ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 3 years ago
- Modular command-line threat hunting tool & framework.☆17Updated 4 years ago
- Reference sheet for Threat Hunting Professional Course☆25Updated 6 years ago
- automate your MISP installs☆67Updated 4 years ago
- intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; inclu…☆39Updated 6 years ago