gchq / event-logging-schema
Event Logging is an XML Schema for describing the auditable events generated by computer systems, hardware devices and access control systems
☆26Updated 2 weeks ago
Alternatives and similar repositories for event-logging-schema:
Users that are interested in event-logging-schema are comparing it to the libraries listed below
- Content for Stroom such as XML Schemas, translations, pipelines and dashboards☆10Updated 3 months ago
- A Java JAXB library for generating events conforming to the Event Logging XML Schema☆17Updated 9 months ago
- gaffer-tools is deprecated. Use https://github.com/gchq/gafferpy instead☆50Updated last year
- Specifications used in the MISP project including MISP core format☆51Updated 4 months ago
- A few quick recipes for those that do not have much time during the day☆22Updated 6 months ago
- This repository is a curated list of pro bono incident response entities.☆20Updated last year
- Potiron - Normalize, Index and Visualize Network Capture☆85Updated 6 years ago
- ☆15Updated 7 years ago
- A set of D3 data visualisations for use in Stroom dashboards or other applications☆14Updated last week
- Best practices in threat intelligence☆46Updated 2 years ago
- Homographs: brutefind homographs within a font☆18Updated 8 years ago
- Materials for the BSides NoVA/Charleston 2018 Bro Workshop☆14Updated 2 months ago
- Build Automated Machine Images for MISP☆28Updated last year
- Node.js SDK for IBM X-Force Exchange☆14Updated 6 years ago
- A Spicy protocol analyzer for WireGuard☆29Updated 4 years ago
- The Open Command and Control Forum promotes the global development and adoption of the OpenC2 language and reference material.☆30Updated 7 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 7 months ago
- A curated lust of awesome cyber civil society actors, project etc.☆10Updated 4 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 6 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- A privacy-aware exchange module to securely and privately share your indicators☆13Updated 7 years ago
- ☆18Updated last year
- Content for cyber defense course☆14Updated 10 years ago
- The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams☆37Updated 3 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 7 years ago
- A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…☆54Updated 7 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2☆14Updated 4 years ago
- Extract, defang, resolve names and IPs from text☆23Updated last year
- Logs key Windows process performance metrics. #nsacyber☆66Updated 2 years ago