Alternatives and similar repositories for audisp-cef:

Users that are interested in audisp-cef are comparing it to the libraries listed below

• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• ukncsc / stix-cvebuilder
  CVE Builder script that generates STIX formatted Exploit Target objects
  ☆18Updated 8 years ago
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago
• set-element / auditdBroFramework
  The Auditd Framework logs and applies security policy to linux auditd data
  ☆15Updated 7 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• Scribery / aushape
  A library and a tool for converting audit logs to XML and JSON
  ☆45Updated 7 years ago
• plashchynski / viewssld
  viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…
  ☆74Updated 7 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 6 months ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• corelan / dnshjmon
  dnshjmon is a free tool to monitor public DNS records and report hijacks
  ☆91Updated 11 years ago
• MISP / ansible
  MISP - Ansible installation script
  ☆22Updated 6 years ago
• kost / docker-cowrie
  A Docker container for Cowrie - SSH honeypot based on kippo
  ☆10Updated 9 years ago
• jedisct1 / massresolver
  Mass DNS resolution tool
  ☆36Updated 4 years ago
• jheise / dns_analyze
  collection of python scripts to capture dns traffic and store it in elasticsearch
  ☆8Updated 3 years ago
• amv42 / sshd-honeypot
  ☆26Updated 6 years ago
• mitre / multiscanner-ansible
  Ansible configurations for distributed MultiScanner installations
  ☆14Updated 6 years ago
• alexwebr / sshflow
  Proof-of-concept that makes a guess at what applications are being tunneled through an SSH session. It works primarily by analyzing packe…
  ☆10Updated 11 years ago
• noxdafox / vminspect
  Tools for inspecting disk images
  ☆25Updated 6 years ago
• SekoiaLab / FastIR_Agent
  FastIR Agent is a Windows service to execute FastIR Collector on demand
  ☆14Updated 8 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated 6 months ago
• tklengyel / honeybrid
  Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…
  ☆31Updated 6 years ago
• juergh / lqs2mem
  Convert libvirt-QEMU-save (LQS) files to raw memory files
  ☆37Updated last year
• makash / linux-container-security-docs
  A gitbook for doing a null Bangalore session on linux container security to discuss and teach namespaces, cgroups etc.
  ☆20Updated 8 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• mricon / wotmate
  Web of trust grapher
  ☆38Updated last month
• quarkslab / irma-ansible-old
  IRMA ansible
  ☆24Updated 8 years ago
• mozilla / build-fwunit
  INACTIVE - http://mzl.la/ghe-archive - Unit Tests for your Network -
  ☆44Updated 6 years ago
• alphagov / puppet-auditd
  Puppet module for Auditd
  ☆40Updated 4 years ago