Alternatives and similar repositories for audisp-cef

Users that are interested in audisp-cef are comparing it to the libraries listed below

• ukncsc / stix-cvebuilder
  CVE Builder script that generates STIX formatted Exploit Target objects
  ☆18Updated 8 years ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated last year
• EricGershman / auditd-examples
  Collection of Auditd Examples and Presentations
  ☆85Updated 4 years ago
• MISP / ansible
  MISP - Ansible installation script
  ☆22Updated 6 years ago
• LiamRandall / BroMalware-Exercise
  ☆85Updated 12 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• CIRCL / bgp-ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN).
  ☆109Updated 2 years ago
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 3 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• set-element / auditdBroFramework
  The Auditd Framework logs and applies security policy to linux auditd data
  ☆15Updated 7 years ago
• mozilla / build-fwunit
  INACTIVE - http://mzl.la/ghe-archive - Unit Tests for your Network -
  ☆44Updated 6 years ago
• CIRCL / cve-portal
  Common Vulnerabilities and Exposures - Portal. Archived and now replaced by vulnerability-lookup.org
  ☆86Updated 5 months ago
• jonschipp / mal-dnssearch
  Compare multiple log formats against malware reputation lists.
  ☆88Updated 8 years ago
• alphagov / puppet-auditd
  Puppet module for Auditd
  ☆40Updated 4 years ago
• hillar / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch
  ☆61Updated 8 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated 10 months ago
• Cisco-Talos / Daemonlogger
  The Official Github Repository of Daemonlogger
  ☆22Updated 4 years ago
• TOoSmOotH / onionsalt
  Onion Salt git Repo
  ☆28Updated 4 years ago
• plashchynski / viewssld
  viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…
  ☆73Updated 8 years ago
• corelan / dnshjmon
  dnshjmon is a free tool to monitor public DNS records and report hijacks
  ☆91Updated 11 years ago
• sealingtech / EDCOP
  Expandable Defensive Cyber Operations Platform
  ☆43Updated 2 years ago
• csirtgadgets / cif-v1
  DEPRECATED USE v3!
  ☆59Updated 9 years ago
• adulau / passive-dns-atlas
  Passive DNS collection (and statistics) from RIPE Atlas Sensors
  ☆19Updated 8 years ago
• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• matrix-ac / LAF
  Linux Application Firewall
  ☆58Updated 5 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago