gdestuynder / audisp-cefLinks
CEF plugin for audisp (Linux Audit)
☆23Updated 9 years ago
Alternatives and similar repositories for audisp-cef
Users that are interested in audisp-cef are comparing it to the libraries listed below
Sorting:
- CVE Builder script that generates STIX formatted Exploit Target objects☆18Updated 8 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44Updated last year
- Collection of Auditd Examples and Presentations☆85Updated 4 years ago
- MISP - Ansible installation script☆22Updated 6 years ago
- ☆85Updated 12 years ago
- Generates visualizations from the output of flow tools such as SiLK.☆35Updated 8 years ago
- BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN).☆109Updated 2 years ago
- Vagrant configuration to setup a Thug honeyclient VM☆20Updated 10 years ago
- The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams☆37Updated 3 years ago
- Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.☆23Updated 4 years ago
- The Auditd Framework logs and applies security policy to linux auditd data☆15Updated 7 years ago
- INACTIVE - http://mzl.la/ghe-archive - Unit Tests for your Network -☆44Updated 6 years ago
- Common Vulnerabilities and Exposures - Portal. Archived and now replaced by vulnerability-lookup.org☆86Updated 5 months ago
- Compare multiple log formats against malware reputation lists.☆88Updated 8 years ago
- Puppet module for Auditd☆40Updated 4 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch☆61Updated 8 years ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 4 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 10 months ago
- The Official Github Repository of Daemonlogger☆22Updated 4 years ago
- Onion Salt git Repo☆28Updated 4 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆73Updated 8 years ago
- dnshjmon is a free tool to monitor public DNS records and report hijacks☆91Updated 11 years ago
- Expandable Defensive Cyber Operations Platform☆43Updated 2 years ago
- DEPRECATED USE v3!☆59Updated 9 years ago
- Passive DNS collection (and statistics) from RIPE Atlas Sensors☆19Updated 8 years ago
- ☆41Updated 4 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Linux Application Firewall☆58Updated 5 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago