jakewarren / suricata-rule-generator
Quickly generate suricata rules for IOCs
☆28Updated 3 years ago
Related projects: ⓘ
- ☆25Updated this week
- ☆43Updated last year
- A Yara Lua output script for Suricata☆19Updated 5 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆45Updated last year
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆32Updated 2 years ago
- Threat Mapping Catalogue☆17Updated 3 years ago
- alertflex controller☆10Updated 8 months ago
- Suricata rule and intel index☆28Updated last month
- Globally distributed honeypots and HoneyNets IOCs and file reversing☆16Updated 4 months ago
- ☆35Updated 9 months ago
- ☆33Updated 3 years ago
- Collection of Suricata rule sets that I use modified to my environments.☆37Updated 4 years ago
- The Fastest way to consume Threat Intel☆25Updated 2 years ago
- Bro integration with osquery☆14Updated last year
- How to Zeek Sysmon Logs!☆100Updated 2 years ago
- ☆52Updated 5 years ago
- ☆44Updated this week
- Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))☆31Updated 4 years ago
- ☆12Updated 2 years ago
- Windows GUI/Execution Engine for Atomic Red Team Atomics☆33Updated 4 years ago
- Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner☆42Updated 2 years ago
- Look into EDR events from network☆23Updated 5 months ago
- ☆37Updated this week
- Tool to read EVTX files including SYSMON and convert to JSON, MISP Objects and Graph stream☆11Updated 3 years ago
- Download all packet captures from http://malware-traffic-analysis.net/☆19Updated 10 years ago
- Queries for Carbon Black Response☆11Updated 4 years ago
- Ripple20 Critical Vulnerabilities - Detection Logic and Signatures☆11Updated 3 years ago
- WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middlew…☆31Updated 4 years ago
- A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.☆31Updated 6 years ago
- A tool to assess data quality, built on top of the awesome OSSEM.☆76Updated 2 years ago