gdestuynder / audisp-cef
CEF plugin for audisp (Linux Audit)
☆23Updated 8 years ago
Alternatives and similar repositories for audisp-cef:
Users that are interested in audisp-cef are comparing it to the libraries listed below
- ☆41Updated 4 years ago
- CVE Builder script that generates STIX formatted Exploit Target objects☆18Updated 8 years ago
- Vagrant configuration to setup a Thug honeyclient VM☆20Updated 10 years ago
- The Auditd Framework logs and applies security policy to linux auditd data☆15Updated 7 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- A library and a tool for converting audit logs to XML and JSON☆45Updated 7 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆74Updated 7 years ago
- A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.☆32Updated 6 months ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 4 years ago
- Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.☆23Updated 4 years ago
- ☆24Updated 5 years ago
- dnshjmon is a free tool to monitor public DNS records and report hijacks☆91Updated 11 years ago
- MISP - Ansible installation script☆22Updated 6 years ago
- A Docker container for Cowrie - SSH honeypot based on kippo☆10Updated 9 years ago
- Mass DNS resolution tool☆36Updated 4 years ago
- collection of python scripts to capture dns traffic and store it in elasticsearch☆8Updated 3 years ago
- ☆26Updated 6 years ago
- Ansible configurations for distributed MultiScanner installations☆14Updated 6 years ago
- Proof-of-concept that makes a guess at what applications are being tunneled through an SSH session. It works primarily by analyzing packe…☆10Updated 11 years ago
- Tools for inspecting disk images☆25Updated 6 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 8 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 6 months ago
- Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…☆31Updated 6 years ago
- Convert libvirt-QEMU-save (LQS) files to raw memory files☆37Updated last year
- A gitbook for doing a null Bangalore session on linux container security to discuss and teach namespaces, cgroups etc.☆20Updated 8 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Updated 9 years ago
- Web of trust grapher☆38Updated last month
- IRMA ansible☆24Updated 8 years ago
- INACTIVE - http://mzl.la/ghe-archive - Unit Tests for your Network -☆44Updated 6 years ago
- Puppet module for Auditd☆40Updated 4 years ago