enotspe / fortinet-2-elasticsearch

Related projects ⓘ

Alternatives and complementary repositories for fortinet-2-elasticsearch

• shadow-box / Palo-Alto-Networks-ELK-Stack
  Configuration for a Palo Alto Networks fed ELK Stack with Visualizations
  ☆74Updated 5 years ago
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆72Updated 3 months ago
• N4SOC / fortilogcsv
  Converts Fortigate log exports into CSV
  ☆42Updated 7 months ago
• airbus-cyber / graylog-plugin-alert-wizard
  Alert Wizard plugin for Graylog to manage the alert rules
  ☆47Updated this week
• IBM / wincollect
  ☆58Updated last year
• Cargill / OpenSIEM-Logstash-Parsing
  SIEM Logstash parsing for more than hundred technologies
  ☆181Updated this week
• maaaaz / fgpoliciestocsv
  A simple script to extract policies from a FortiGate configuration file to CSV
  ☆137Updated last year
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆58Updated 7 months ago
• sm-biz / paloalto-elasticstack-viz
  PANW Firewall Visualisations using Elastic Stack
  ☆90Updated last year
• HASecuritySolutions / Logstash
  Contains Logstash related content including tons of Logstash configurations
  ☆253Updated 3 years ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆86Updated 2 years ago
• HKcyberstark / wazuh-ecs
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆27Updated 4 years ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆61Updated 3 years ago
• CiscoSecurity / fp-05-firepower-cef-connector-arcsight
  Cisco eStreamer client
  ☆25Updated 2 years ago
• fortinet / fortios-ips-snort
  Convert snort IPS signatures to FortiGate custom IPS signature syntax.
  ☆36Updated last year
• sophos / Sophos-Central-SIEM-Integration
  Simple integration script for 3rd party systems such as SIEMs. Offers command line, file or syslog output in CEF, JSON or key-value pair …
  ☆121Updated last year
• josh-morin / qradar
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆78Updated 3 months ago
• ThoZed / graylog-cp-watchguard
  Graylog Content Pack for Watchguard Fireware Logging
  ☆34Updated 5 years ago
• counteractive / o365beat
  Elastic Beat for fetching and shipping Office 365 audit events
  ☆66Updated 4 years ago
• juaromu / wazuh-nmap
  ☆17Updated 2 years ago
• jhochwald / Universal-Winlogbeat-configuration
  Universal Winlogbeat configuration
  ☆30Updated 2 years ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆50Updated 2 months ago
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 3 years ago
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆141Updated last year
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆92Updated 2 years ago
• cloudfence / opnsense-wazuh
  Tools to integrate 2 great security tools OPNsense and Wazuh
  ☆27Updated 3 years ago
• PaloAltoNetworks / iron-skillet
  IronSkillet is a set of day-one configuration templates for PAN-OS to enable alignment with security best practices. See the Quick Start …
  ☆201Updated last year
• AustralianCyberSecurityCentre / windows_event_logging
  Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…
  ☆212Updated 2 years ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆34Updated 2 years ago
• scottdware / panco
  Command-line tool that interacts with Palo Alto firewalls and Panorama
  ☆19Updated last year