gdestuynder / audisp-cefLinks
CEF plugin for audisp (Linux Audit)
☆23Updated 8 years ago
Alternatives and similar repositories for audisp-cef
Users that are interested in audisp-cef are comparing it to the libraries listed below
Sorting:
- ☆41Updated 4 years ago
- CVE Builder script that generates STIX formatted Exploit Target objects☆18Updated 8 years ago
- ☆24Updated 5 years ago
- The Auditd Framework logs and applies security policy to linux auditd data☆15Updated 7 years ago
- Puppet module for Auditd☆40Updated 4 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44Updated last year
- Web of trust grapher☆38Updated 2 weeks ago
- Vagrant configuration to setup a Thug honeyclient VM☆20Updated 10 years ago
- Stealth is a File Integrity scanner performing its work in a stealthy way.☆12Updated 6 years ago
- Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.☆23Updated 4 years ago
- ☆85Updated 11 years ago
- A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.☆32Updated 8 months ago
- Convert libvirt-QEMU-save (LQS) files to raw memory files☆37Updated last year
- INACTIVE - http://mzl.la/ghe-archive - Unit Tests for your Network -☆44Updated 6 years ago
- module for osquery to load Bro logs into tables☆28Updated 10 years ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 4 years ago
- A Docker container for Cowrie - SSH honeypot based on kippo☆10Updated 10 years ago
- Broctl plugin for automatically executing 'setcap' on each node after an install☆13Updated 4 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- bro.vim - A simple plugin for working with the bro scripting languages.☆22Updated 5 years ago
- Time-Machine Dynamic Bulk Packet Recorder☆36Updated last month
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated this week
- Proof-of-concept that makes a guess at what applications are being tunneled through an SSH session. It works primarily by analyzing packe…☆10Updated 11 years ago
- A Postfix filter which takes a piped message and submits it to Cuckoo Sandbox☆11Updated 9 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Updated 9 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 7 months ago
- Tools for inspecting disk images☆25Updated 6 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 8 years ago
- A library and a tool for converting audit logs to XML and JSON☆45Updated 7 years ago
- MISP - Ansible installation script☆22Updated 6 years ago