kazuminn / vulsbeat
Vuls Beater for Elasticsearch - connecting vuls
☆17Updated 4 years ago
Alternatives and similar repositories for vulsbeat:
Users that are interested in vulsbeat are comparing it to the libraries listed below
- This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2☆14Updated 4 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- Simple SYSLOG client in Go☆22Updated 9 months ago
- Various blog post projects.☆10Updated 9 months ago
- Flame - Send vulnerabilities reports to SIEM☆15Updated 8 years ago
- ☆15Updated 7 years ago
- ☆12Updated 5 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- Parsing MITRE EDR Evaluation results☆12Updated 6 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- Golang based web service to scan files with yara rules☆27Updated 7 years ago
- ☆15Updated 7 years ago
- Duo MFA auditing tool to test users' likelihood of approving unexpected push notifications☆13Updated 6 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆26Updated 5 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 5 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆48Updated 2 years ago
- ☆33Updated 3 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- Collect autorun records from running system☆61Updated 3 years ago
- Carving tool based in Radare2 & Yara☆16Updated 6 years ago
- Bro analyzer that detects Google's QUIC protocol☆10Updated 4 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 4 years ago
- SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab☆36Updated 4 years ago
- Tachikoma is a security alerting framework for human beings☆22Updated 6 years ago
- Golang port for Metasploit's pattern_create and pattern_offset☆12Updated 4 years ago
- Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.☆22Updated 2 years ago