jslagrew / cowrieprocessorLinks
☆17Updated this week
Alternatives and similar repositories for cowrieprocessor
Users that are interested in cowrieprocessor are comparing it to the libraries listed below
Sorting:
- Useful network monitoring, analysis, and active response tools used or mentioned in the SANS SEC503 course (https://www.sans.org/course/i…☆241Updated 9 months ago
- Dashboard for conducting Backdoors and Breaches sessions over Zoom.☆115Updated 11 months ago
- Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana☆299Updated this week
- LogRhythm PowerShell Toolkit☆51Updated last month
- Splunk Boss of the SOC version 2 dataset.☆400Updated 2 years ago
- Splunk Boss of the SOC version 3 dataset.☆376Updated 5 years ago
- ☆133Updated last year
- Incident Response Hierarchy of Needs☆464Updated 2 years ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆73Updated 11 months ago
- A curated list of awesome infosec courses and training resources.☆204Updated 2 years ago
- Indexes for SANS Courses and GIAC Certifications☆262Updated last year
- This is a repository for freq.py and freq_server.py☆210Updated 5 years ago
- A list of Splunk queries that I've collected and used over time.☆86Updated 4 years ago
- This repo is meant to be a list of companies that hire security people full remote.☆101Updated last month
- DDTTX Tabletop Trainings☆28Updated 4 years ago
- Tools for simulating threats☆193Updated last year
- This was code for analyzing round 1 of the MITRE Enterprise ATT&CK Evaluation. Please check out https://github.com/joshzelonis/Enterprise…☆95Updated 5 years ago
- Zeek Log Cheatsheets☆298Updated last month
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆496Updated last year
- NIST CyberSecurity Framework management tool☆166Updated 3 years ago
- A port of BHIS's Backdoors & Breaches for playingcards.io☆64Updated 2 years ago
- Web application to create indexes for GIAC certification examinations.☆146Updated 2 years ago
- Distribution of the SANS SEC504 Windows Cheat Sheet Lab☆71Updated 5 years ago
- Real-time Response scripts and schema☆118Updated last year
- InsightVM helpful SQL queries☆71Updated 7 months ago
- Atomic Purple Team Framework and Lifecycle☆298Updated 4 years ago
- Splunk code (SPL) for serious threat hunters and detection engineers.☆287Updated last year
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆211Updated 5 years ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆128Updated 2 years ago
- Cyber Incident Response Team Playbook Battle Cards☆417Updated last year