elastic / security-docs

Related projects: ⓘ

• elastic / endpoint-package
  Repo for developing the endpoint package
  ☆23Updated this week
• elastic / integrations
  Elastic Integrations
  ☆194Updated this week
• elastic / elastic-package
  elastic-package - Command line tool for developing Elastic Integrations
  ☆49Updated this week
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆48Updated 10 months ago
• elastic / endpoint
  ☆27Updated 5 months ago
• elastic / observability-docs
  Elastic Observability Documentation
  ☆33Updated this week
• elastic / elastic-agent
  Elastic Agent - single, unified way to add monitoring for logs, metrics, and other types of data to a host.
  ☆124Updated this week
• Security-Onion-Solutions / securityonion-image
  ☆47Updated last week
• SigmaHQ / sigma-specification
  Sigma rule specification
  ☆105Updated 3 weeks ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆33Updated 3 weeks ago
• elastic / fleet-server
  The Fleet server allows managing a fleet of Elastic Agents.
  ☆82Updated this week
• elastic / package-storage
  Package storage for packages served through the package registry service
  ☆10Updated last year
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆122Updated 3 weeks ago
• splunk / contentctl
  Splunk Content Control Tool
  ☆81Updated this week
• opensearch-project / security-analytics
  Security Analytics enables users for detecting security threats on their security event log data. It will also allow them to modify/tailo…
  ☆69Updated last week
• SigmaHQ / sigma-cli
  The Sigma command line interface based on pySigma
  ☆130Updated last month
• elastic / package-spec
  EPR package specifications
  ☆17Updated this week
• TheHive-Project / awesome
  A curated list of awesome things related to TheHive & Cortex
  ☆170Updated 2 years ago
• joesecurity / sigma-rules
  Sigma rules from Joe Security
  ☆199Updated last month
• center-for-threat-informed-defense / attack-workbench-rest-api
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆40Updated last week
• socprime / SigmaUI
  SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
  ☆184Updated 3 years ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆54Updated 2 years ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆65Updated 3 months ago
• OTRF / OSSEM-DM
  OSSEM Detection Model
  ☆166Updated last year
• phantomcyber / phantom-apps
  Phantom Apps Repo
  ☆81Updated 2 years ago
• opencybersecurityalliance / documentation
  This repository contains Enablement Documentation (STIX Shifter), Workgroup documents and materials (Endpoint), Working documents and ou…
  ☆33Updated this week
• splunk / splunk-connect-for-syslog
  Splunk Connect for Syslog
  ☆152Updated this week
• elastic / ecs-mapper
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆54Updated 2 years ago
• Shuffle / python-apps
  Apps to be used for Shuffle automation. 95 of Shuffle apps are generated from APIs, and not in this directory
  ☆98Updated 2 weeks ago
• ExabeamLabs / Content-Library-CIM2
  ☆16Updated 2 months ago