Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
☆53Mar 9, 2022Updated 4 years ago
Alternatives and similar repositories for ecs-mapper
Users that are interested in ecs-mapper are comparing it to the libraries listed below
Sorting:
- This repository contains a few examples of actions that can be added to rules within Elastic Security.☆24Feb 6, 2025Updated last year
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆33Updated this week
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Jul 21, 2020Updated 5 years ago
- Web UI for testing Elastic Beats processors☆18Feb 22, 2026Updated last month
- Converts Netwitness log parser configuration to Logstash configuration☆20Sep 10, 2020Updated 5 years ago
- ☆31Jul 3, 2024Updated last year
- Elastic Common Schema☆1,103Updated this week
- ECS Logging - Common resources and issues for the language specific ECS loggers☆46Feb 24, 2026Updated 3 weeks ago
- a library of Logstash pipeline configuration files mapping data to the Elastic Common Schema☆10Feb 28, 2021Updated 5 years ago
- Filebeat module for Squid access.log + Kibana dashboards. ELK 7.x☆17Sep 19, 2020Updated 5 years ago
- ☆12Apr 23, 2020Updated 5 years ago
- ☆15Sep 24, 2024Updated last year
- Simple backup/restore for Kibana saved objects: config, index patterns, dashboards, saved searches, etc.☆48Oct 20, 2022Updated 3 years ago
- Web interface to IntelMQ☆10Sep 10, 2025Updated 6 months ago
- Public rules and samples for various automations through LimaCharlie.io☆14Dec 16, 2021Updated 4 years ago
- Parse pfSense/OPNSense logs using Logstash, GeoIP tag entities, add additional context to logs, then send to Azure Sentinel for analysis.☆31Feb 28, 2022Updated 4 years ago
- the fastest way to consume threat intelligence.☆30Mar 9, 2023Updated 3 years ago
- This is a very fast parsing script for downloaded TV shows and movies. It will use scene-standard naming conventions (and a lot of nonsta…☆16Oct 30, 2017Updated 8 years ago
- Pep up your Windows Event Collector (WEC) for Windows Event Forwarding (WEF)☆18Aug 10, 2021Updated 4 years ago
- ☆2,525Updated this week
- Prometheus exporter for Elastic Beats☆22Jan 23, 2024Updated 2 years ago
- A few quick recipes for those that do not have much time during the day☆22Oct 28, 2024Updated last year
- Listing releases of the Elastic stack with new features and references☆19Feb 4, 2026Updated last month
- Tool for testing logstash pipelines☆42Feb 28, 2026Updated 3 weeks ago
- Mapping Corelight or Zeek data to Elastic Common Schema logs☆12Updated this week
- Command line tool used for generating events corpus dynamically given a specific integration☆25Mar 4, 2026Updated 2 weeks ago
- Logstash Input Plugin for Cloudflare logs☆14Dec 31, 2019Updated 6 years ago
- Kestrel Jupyter Notebook Kernel☆10Oct 19, 2023Updated 2 years ago
- RPM packages for MISP☆40Updated this week
- An example for implementation of ssdeep similarity search optimized with elasticsearch☆34Sep 19, 2017Updated 8 years ago
- Digital forensics for Google Drive—done right. Identify, preserve, and document cloud evidence with hash verification, timeline reconstru…☆26Dec 8, 2025Updated 3 months ago
- Show calculated stat based on single result queries☆12Jul 28, 2017Updated 8 years ago
- Hackish nonsense to interact with the MITRE ATT&CK API via Python☆15Feb 2, 2021Updated 5 years ago
- ☆77Jun 25, 2019Updated 6 years ago
- log data pre processing, generation and shipping in python☆35Updated this week
- Elastic Common Schema (ECS) support for zerolog☆11Mar 10, 2026Updated last week
- Contains Logstash related content including tons of Logstash configurations☆254Aug 25, 2021Updated 4 years ago
- Tool that gathers a customizable set of ETW telemetry and generates user-defined detections☆47Jan 28, 2026Updated last month
- Plugin files for editing K files☆12Aug 20, 2024Updated last year