Alternatives and similar repositories for event-logging-schema

Users that are interested in event-logging-schema are comparing it to the libraries listed below

• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• andrewbeard / broworkshop
  Materials for the BSides NoVA/Charleston 2018 Bro Workshop
  ☆14Updated 7 months ago
• MISP / misp-compliance
  Legal, procedural and policies document templates for operating MISP and information sharing communities
  ☆38Updated 2 years ago
• dutchcoders / homographs
  Homographs: brutefind homographs within a font
  ☆19Updated 8 years ago
• mitre / caret
  CARET - A tool for viewing cyber analytic relationships
  ☆55Updated 6 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆53Updated last week
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆40Updated last year
• CIRCL / pcapdj
  pcapdj - dispatch pcap files
  ☆46Updated 5 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆44Updated 7 years ago
• stratosphereips / whois-similarity-distance
  This python scripts can calculate the WHOIS Similarity Distance between two given domains.
  ☆29Updated 3 years ago
• dirtbags / fluffy
  Tools for Network Archaeology (internet protocol analysis)
  ☆29Updated 4 months ago
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 3 years ago
• voxpupuli / puppet-misp
  This module installs and configures MISP (Malware Information Sharing Platform)
  ☆13Updated 2 weeks ago
• grapl-security / grapl-analyzers
  Hosted analyzers built for Grapl
  ☆14Updated 3 years ago
• zeek / zeek-agent-framework
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Updated 5 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 5 years ago
• adulau / threat-intelligence.eu
  threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…
  ☆49Updated 2 months ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated 2 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆29Updated 2 years ago
• ccdcoe / Frankencoding
  You're busted!
  ☆27Updated 6 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆21Updated 2 years ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 5 years ago
• terry-wen / Network-Visualization-Project
  Network visualizer tool built using Processing
  ☆24Updated 4 years ago
• att / docker-forensics
  Tools to assist in forensicating docker
  ☆85Updated 10 months ago
• blaverick62 / SIREN
  Semi-Intelligent HoneyPot Network - Semi-Intelligent Reactive Environment Network
  ☆15Updated 7 years ago
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆20Updated 7 years ago
• sreinhardt / Docker-Honeynet
  Docker configs and build scripts.
  ☆23Updated 11 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆50Updated 3 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated last year
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 9 years ago