This repository contains a few examples of actions that can be added to rules within Elastic Security.
☆24Feb 6, 2025Updated last year
Alternatives and similar repositories for security-action-examples
Users that are interested in security-action-examples are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- REST version of the Spring Petclinic sample application☆19Aug 8, 2024Updated last year
- Script to create MITRE ATT&CK Navigator layers from the annotated detection rules in Elastic Security (Kibana).☆19Jul 1, 2023Updated 2 years ago
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆53Mar 9, 2022Updated 4 years ago
- ☆26Updated this week
- Converts Netwitness log parser configuration to Logstash configuration☆20Sep 10, 2020Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Jan 29, 2020Updated 6 years ago
- A list of Mitre Caldera compatible emulation-plans☆14Feb 1, 2021Updated 5 years ago
- A command-line tool for debugging JSON logs, built in Go. Logshark integrates seamlessly with Beats and Logstash to provide real-time log…☆40Dec 13, 2022Updated 3 years ago
- ☆52Updated this week
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆26May 18, 2021Updated 5 years ago
- Parse Suricata rules☆14Aug 1, 2023Updated 2 years ago
- Safed for Linux☆14Jul 5, 2019Updated 6 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆33May 23, 2026Updated last month
- ☆12Apr 23, 2020Updated 6 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Filebeat module for Squid access.log + Kibana dashboards. ELK 7.x☆17Sep 19, 2020Updated 5 years ago
- Elastic GenAI Workshop (Colab)☆12Feb 6, 2025Updated last year
- NetEye 4 community repository to share monitoring templates, Plugin scripts and instructions to enhance some NetEye modules in an guided …☆18Dec 17, 2025Updated 6 months ago
- Zeek Training Materials/Products☆44Apr 21, 2026Updated 2 months ago
- Ansible role to install auditbeat for security monitoring. (Ruleset included)☆15Nov 16, 2023Updated 2 years ago
- Plugin files for editing K files☆12Aug 20, 2024Updated last year
- ☆12Jun 22, 2026Updated last week
- Ansible playbook for installing MineMeld on Linux☆47Mar 18, 2021Updated 5 years ago
- Code for the Raspberry Pi SQLite Sensors video series.☆13Jun 25, 2016Updated 10 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆34Oct 16, 2025Updated 8 months ago
- A guide on using Zimbra with Elastic Stack using centralized logging☆27Apr 26, 2023Updated 3 years ago
- Searches For Threat Hunting and Security Analytics☆239Mar 26, 2025Updated last year
- A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, t…☆12Nov 23, 2022Updated 3 years ago
- collector☆64Jun 19, 2026Updated last week
- A solution for using the ElastiFlow Unified Collector with the Elastic Stack (Elasticsearch and Kibana).☆26Nov 10, 2025Updated 7 months ago
- A Terminal User Interface for Logstash 🪵☆109Apr 10, 2026Updated 2 months ago
- Deploy Kolide's Fleet into AWS using Terraform.☆16Apr 18, 2018Updated 8 years ago
- Meer is a "spooler" for Suricata / Sagan.☆30Jun 21, 2023Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A simple pam account module to process HBAC rules stored on an IPA server☆10May 14, 2018Updated 8 years ago
- Logiciel de gestion de stock☆25Oct 11, 2023Updated 2 years ago
- ☆16Dec 16, 2020Updated 5 years ago
- A dynamic checker for the ECF property incorporated into geth☆15Oct 27, 2017Updated 8 years ago
- Information about most important hunts which can be performed by Threat hunters while searching for any adversary/threats inside the orga…☆15May 18, 2019Updated 7 years ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆28Jul 21, 2020Updated 5 years ago
- ☆13Dec 26, 2022Updated 3 years ago