elastic / geneveLinks
☆13Updated last week
Alternatives and similar repositories for geneve
Users that are interested in geneve are comparing it to the libraries listed below
Sorting:
- OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON☆50Updated last year
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- TAXII client implementation from EclecticIQ☆101Updated 3 years ago
- OASIS TC Open Repository: TAXII 2 Client Library Written in Python☆116Updated last year
- STIX2 graph visualisation library in JS☆90Updated last month
- Python module to interface with the OpenDNS Investigate API☆63Updated 3 years ago
- Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.☆81Updated 4 months ago
- A Python library for handling TAXII Messages invoking TAXII Services.☆71Updated 4 years ago
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆54Updated 3 years ago
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆27Updated 4 years ago
- Best practices in threat intelligence☆48Updated 2 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated 3 weeks ago
- SIAC is an enterprise SIEM built on open-source technology.☆115Updated 6 years ago
- A utility repo to assist with converting between MISP and STIX formats☆69Updated 4 years ago
- ☆38Updated 5 years ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 4 years ago
- Build Automated Machine Images for MISP☆28Updated 2 years ago
- YETI is a TAXII implementation☆46Updated 6 years ago
- An OpenTAXII Configuration for MISP☆82Updated 2 years ago
- ☆15Updated 7 years ago
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- MISP - Ansible installation script☆22Updated 6 years ago
- A Python library to help with some common threat hunting data analysis operations☆143Updated 2 years ago
- Pre-configured environment that supports the development and running of OpenDXL solutions☆13Updated 4 years ago
- Zeek support for Community ID flow hashing.☆36Updated 2 years ago
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago
- Using QRadar API☆20Updated 7 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- Definition, description and relationship types of MISP objects☆99Updated last week