gose / elastic-data-lake

Related projects: ⓘ

• elastic / ecs-mapper
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆54Updated 2 years ago
• Cargill / OpenSIEM-Logstash-Parsing
  SIEM Logstash parsing for more than hundred technologies
  ☆180Updated this week
• glenacota / elastic-training-repo
  A collection of datasets, docker-compose files, notes, and other stuff related to the Elastic stack.
  ☆71Updated 7 months ago
• HASecuritySolutions / Logstash
  Contains Logstash related content including tons of Logstash configurations
  ☆252Updated 3 years ago
• sunileman / ElasticKonductor
  1Click Automation of Elastic Cloud on Kubernetes
  ☆25Updated last month
• alexfrancoeur / kibana_canvas_examples
  A selection of Canvas workpad examples
  ☆85Updated 3 years ago
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆48Updated 10 months ago
• elastic / security-action-examples
  This repository contains a few examples of actions that can be added to rules within Elastic Security.
  ☆22Updated 2 years ago
• enotspe / fortinet-2-elasticsearch
  Fortinet products logs to Elasticsearch
  ☆86Updated 2 weeks ago
• empow / logstash-parsers
  ☆37Updated 4 years ago
• zyongqing / elastic-certified-engineer
  ☆32Updated 3 years ago
• ExabeamLabs / Content-Library-CIM2
  ☆16Updated 2 months ago
• splunk / kafka-connect-splunk
  Kafka connector for Splunk
  ☆93Updated last month
• socprime / SigmaUI
  SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
  ☆184Updated 3 years ago
• guilhemmarchand / kafka-docker-splunk
  Provides docker-compose template for Kafka monitoring with Splunk
  ☆14Updated last year
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆139Updated last year
• TheHive-Project / awesome
  A curated list of awesome things related to TheHive & Cortex
  ☆170Updated 2 years ago
• felix-lessoer / elastic-terraform-examples
  Examples for creating Elastic Environments via Terraform
  ☆26Updated 8 months ago
• HKcyberstark / wazuh-ecs
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆27Updated 4 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆92Updated 2 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆33Updated 3 weeks ago
• MISP / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆104Updated 8 months ago
• HASecuritySolutions / Presentations
  ☆131Updated 6 months ago
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated last year
• WuerthPhoenix / log-generator
  Random Log Generation
  ☆27Updated 8 months ago
• josh-morin / qradar
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆75Updated last month
• ibmresilient / resilient-community-apps
  Source code for IBM SOAR Apps that are available on our App Exchange
  ☆88Updated 3 weeks ago
• walterra / jupyter2kibana
  A Workflow for Data Scientists to bring Jupyter Notebook Visualizations to Kibana Dashboards
  ☆43Updated last year
• epacke / logstash-pipeline-tester
  Tool for testing logstash pipelines
  ☆35Updated this week