gdestuynder / audisp-cef
CEF plugin for audisp (Linux Audit)
☆23Updated 8 years ago
Alternatives and similar repositories for audisp-cef:
Users that are interested in audisp-cef are comparing it to the libraries listed below
- ☆42Updated 4 years ago
- The Auditd Framework logs and applies security policy to linux auditd data☆15Updated 7 years ago
- CVE Builder script that generates STIX formatted Exploit Target objects☆18Updated 8 years ago
- Web of trust grapher☆39Updated last week
- Vagrant configuration to setup a Thug honeyclient VM☆20Updated 10 years ago
- Puppet module for Auditd☆40Updated 4 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 4 years ago
- Onion Salt git Repo☆28Updated 4 years ago
- A library and a tool for converting audit logs to XML and JSON☆45Updated 7 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆37Updated 5 months ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44Updated 10 months ago
- Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.☆23Updated 4 years ago
- This is a set of scripts that scan a Linux system looking for security and robustness problems.☆17Updated 4 months ago
- Convert libvirt-QEMU-save (LQS) files to raw memory files☆37Updated last year
- Passive DNS collection (and statistics) from RIPE Atlas Sensors☆19Updated 7 years ago
- Honeypot log processor to create OTX Pulse entries☆28Updated last year
- A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.☆32Updated 5 months ago
- ☆18Updated 10 years ago
- Shell intended for forwarding-only ssh connection via jumphost☆10Updated 6 years ago
- Recon system hardening scanner☆47Updated 8 years ago
- Broctl plugin for automatically executing 'setcap' on each node after an install☆13Updated 4 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆53Updated last week
- Enterprise Linux Exploit Mapper☆28Updated 7 years ago
- Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…☆31Updated 6 years ago
- IRMA ansible☆24Updated 8 years ago
- MISP - Ansible installation script☆22Updated 6 years ago
- Network sinkhole for isolated malware analysis☆40Updated 7 years ago
- ☆17Updated 7 years ago
- The documentation and build system for the grsecurity kernel maintained by the Freedom of the Press Foundation for SecureDrop☆49Updated 4 years ago