Alternatives and similar repositories for audisp-cef:

Users that are interested in audisp-cef are comparing it to the libraries listed below

• gdestuynder / audisp-json
  ☆42Updated 4 years ago
• set-element / auditdBroFramework
  The Auditd Framework logs and applies security policy to linux auditd data
  ☆15Updated 7 years ago
• ukncsc / stix-cvebuilder
  CVE Builder script that generates STIX formatted Exploit Target objects
  ☆18Updated 8 years ago
• mricon / wotmate
  Web of trust grapher
  ☆39Updated last week
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago
• alphagov / puppet-auditd
  Puppet module for Auditd
  ☆40Updated 4 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• TOoSmOotH / onionsalt
  Onion Salt git Repo
  ☆28Updated 4 years ago
• Scribery / aushape
  A library and a tool for converting audit logs to XML and JSON
  ☆45Updated 7 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆37Updated 5 months ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated 10 months ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• stevegrubb / security-assessor
  This is a set of scripts that scan a Linux system looking for security and robustness problems.
  ☆17Updated 4 months ago
• juergh / lqs2mem
  Convert libvirt-QEMU-save (LQS) files to raw memory files
  ☆37Updated last year
• adulau / passive-dns-atlas
  Passive DNS collection (and statistics) from RIPE Atlas Sensors
  ☆19Updated 7 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆28Updated last year
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 5 months ago
• cikl / threatinator
  ☆18Updated 10 years ago
• kevinreddot / forsh
  Shell intended for forwarding-only ssh connection via jumphost
  ☆10Updated 6 years ago
• HewlettPackard / reconbf
  Recon system hardening scanner
  ☆47Updated 8 years ago
• PingTrip / broctl-setcap
  Broctl plugin for automatically executing 'setcap' on each node after an install
  ☆13Updated 4 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆53Updated last week
• fedoraredteam / elem
  Enterprise Linux Exploit Mapper
  ☆28Updated 7 years ago
• tklengyel / honeybrid
  Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…
  ☆31Updated 6 years ago
• quarkslab / irma-ansible-old
  IRMA ansible
  ☆24Updated 8 years ago
• MISP / ansible
  MISP - Ansible installation script
  ☆22Updated 6 years ago
• shendo / netsink
  Network sinkhole for isolated malware analysis
  ☆40Updated 7 years ago
• rmkml / etplc
  ☆17Updated 7 years ago
• freedomofpress / ansible-role-grsecurity
  The documentation and build system for the grsecurity kernel maintained by the Freedom of the Press Foundation for SecureDrop
  ☆49Updated 4 years ago