elastic / geneveLinks
☆13Updated this week
Alternatives and similar repositories for geneve
Users that are interested in geneve are comparing it to the libraries listed below
Sorting:
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- This repository contains a few examples of actions that can be added to rules within Elastic Security.☆22Updated 3 months ago
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆54Updated 3 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago
- Converts Netwitness log parser configuration to Logstash configuration☆20Updated 4 years ago
- A Workflow for Data Scientists to bring Jupyter Notebook Visualizations to Kibana Dashboards☆45Updated 2 years ago
- ArcSight's Common Event Format library☆38Updated last year
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- A Zeek package that detects Zoom logins and meeting joins☆12Updated 5 years ago
- Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…☆16Updated 3 years ago
- ☆23Updated 5 years ago
- ☆13Updated 3 years ago
- A Python implementation of the Community ID flow hashing standard☆23Updated last year
- Zeek package for tracking long connections to report them before they have completed.☆30Updated 4 months ago
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆27Updated 4 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- Expandable Defensive Cyber Operations Platform☆43Updated 2 years ago
- Command line tool used for generating events corpus dynamically given a specific integration☆23Updated 4 months ago
- ☆48Updated this week
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated this week
- Best practices in threat intelligence☆47Updated 2 years ago
- Script to create MITRE ATT&CK Navigator layers from the annotated detection rules in Elastic Security (Kibana).☆20Updated last year
- ☆9Updated last month
- ☆27Updated 5 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Updated 5 years ago
- Push-button Security Operations Center using Kubernetes☆12Updated 8 years ago
- The Elastic Security Research team produces public-facing content, in the way of summary blogs, detailed releases, and artifacts; articul…☆9Updated 2 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- Zeek support for Community ID flow hashing.☆35Updated last year