elastic / security-docs
Elastic Security Documentation
☆67Updated this week
Related projects: ⓘ
- Repo for developing the endpoint package☆23Updated this week
- Elastic Integrations☆194Updated this week
- elastic-package - Command line tool for developing Elastic Integrations☆49Updated this week
- Wazuh - Splunk App☆48Updated 10 months ago
- ☆27Updated 5 months ago
- Elastic Observability Documentation☆33Updated this week
- Elastic Agent - single, unified way to add monitoring for logs, metrics, and other types of data to a host.☆124Updated this week
- ☆47Updated last week
- Sigma rule specification☆105Updated 3 weeks ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆33Updated 3 weeks ago
- The Fleet server allows managing a fleet of Elastic Agents.☆82Updated this week
- Package storage for packages served through the package registry service☆10Updated last year
- Cisco Orbital - Osquery queries by Talos☆122Updated 3 weeks ago
- Splunk Content Control Tool☆81Updated this week
- Security Analytics enables users for detecting security threats on their security event log data. It will also allow them to modify/tailo…☆69Updated last week
- The Sigma command line interface based on pySigma☆130Updated last month
- EPR package specifications☆17Updated this week
- A curated list of awesome things related to TheHive & Cortex☆170Updated 2 years ago
- Sigma rules from Joe Security☆199Updated last month
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆40Updated last week
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆184Updated 3 years ago
- OSSEM Common Data Model☆54Updated 2 years ago
- Controls Assessment Specification☆65Updated 3 months ago
- OSSEM Detection Model☆166Updated last year
- Phantom Apps Repo☆81Updated 2 years ago
- This repository contains Enablement Documentation (STIX Shifter), Workgroup documents and materials (Endpoint), Working documents and ou…☆33Updated this week
- Splunk Connect for Syslog☆152Updated this week
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆54Updated 2 years ago
- Apps to be used for Shuffle automation. 95 of Shuffle apps are generated from APIs, and not in this directory☆98Updated 2 weeks ago
- ☆16Updated 2 months ago