elastic / geneveLinks
☆13Updated this week
Alternatives and similar repositories for geneve
Users that are interested in geneve are comparing it to the libraries listed below
Sorting:
- ☆10Updated 3 weeks ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON☆52Updated last year
- A Python library to help with some common threat hunting data analysis operations☆143Updated 2 years ago
- A python package for use in generating fake data for SOC and security automation.☆170Updated 7 months ago
- WebUI of MineMeld☆43Updated 2 years ago
- Actionable data for Security Operations☆19Updated 4 years ago
- OASIS TC Open Repository: TAXII 2 Client Library Written in Python☆117Updated last year
- A website and framework for testing NIDS detection☆57Updated 4 years ago
- ☆38Updated 11 months ago
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆54Updated 3 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- ArcSight's Common Event Format library☆39Updated last year
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆23Updated 6 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 3 years ago
- Zeek support for Community ID flow hashing.☆37Updated 2 years ago
- Wireshark plugin to display Suricata analysis info☆95Updated 3 years ago
- STIX2 graph visualisation library in JS☆91Updated 3 months ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …☆28Updated last year
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Updated 5 years ago
- Connector for pulling and converting STIX information from TAXII Service Providers into CB Feeds.☆15Updated 3 years ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆17Updated 4 years ago
- Script to create MITRE ATT&CK Navigator layers from the annotated detection rules in Elastic Security (Kibana).☆20Updated 2 years ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 4 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago
- A Python library for handling TAXII Messages invoking TAXII Services.☆72Updated 4 years ago
- TAXII client implementation from EclecticIQ☆103Updated 4 years ago
- Swagger/ OpenAPI specifications for security products and services☆77Updated last month
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago