josh-thurston / easyBEATS
Beats for Raspberry Pi / ARM
☆84Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for easyBEATS
- Installation script for ELK stack to make life easy.☆67Updated 4 years ago
- Experimental DNS logs pipeline based on Pi-hole dnsmasq logs, ELK stack, and Filebeat. Sample configs included.☆30Updated last year
- elasticsearch, logstash and kibana configuration for pi-hole visualiziation☆204Updated 2 years ago
- Logstash configuration for pfSense syslog events.☆93Updated last year
- Cisco eStreamer client☆25Updated 2 years ago
- Docker files for building Zeek.☆86Updated last year
- Wazuh - Splunk App☆50Updated 2 months ago
- Configuration for a Palo Alto Networks fed ELK Stack with Visualizations☆74Updated 5 years ago
- Elastic Beat for fetching and shipping Office 365 audit events☆66Updated 4 years ago
- Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases☆150Updated 8 months ago
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆27Updated 3 years ago
- Data validator agains Splunk Common Information Model (CIM)☆75Updated 7 months ago
- Zeek (formerly Bro) Network Security Monitor package for pfSense router/firewall☆44Updated 3 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆92Updated 2 years ago
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆54Updated 2 years ago
- ☆23Updated 5 years ago
- Dashboards and loader for ROCK NSM dashboards☆47Updated last year
- Run zeek with zeekctl in docker☆50Updated 2 months ago
- SIEM Logstash parsing for more than hundred technologies☆181Updated this week
- ☆37Updated 5 years ago
- Elasticsearch / Kibana for Unifi USG and CloudKey (gen2)☆19Updated 4 years ago
- Fortinet products logs to Elasticsearch☆89Updated 2 months ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 3 years ago
- MineMeld nodes for MISP☆18Updated 9 months ago
- Bro IDS Dockerfile☆129Updated 5 years ago
- GrayLog Extractors & More!☆53Updated 7 years ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆123Updated 2 years ago