Alternatives and similar repositories for auditd-timeline:

Users that are interested in auditd-timeline are comparing it to the libraries listed below

• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆45Updated 8 years ago
• EmergingThreats / cuckoo-1.1
  cuckoo-1.1 fork with suricata/moloch/clamav and other goodies
  ☆23Updated 9 years ago
• hadojae / redonion
  **BETA** A simple buildscript for network security monitoring on RHEL/CentOS
  ☆31Updated 7 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆47Updated 6 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 7 years ago
• corelight / top-dns
  Top DNS Measurement for Bro
  ☆11Updated 4 years ago
• Benster900 / BlogProjects
  Various blog post projects.
  ☆10Updated 7 months ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆29Updated last year
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆37Updated 3 months ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆20Updated last year
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated 8 months ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 9 years ago
• kost / docker-cowrie
  A Docker container for Cowrie - SSH honeypot based on kippo
  ☆10Updated 9 years ago
• SubtleScope / logfile-generators
  Series of scripts to generate fake logs for use in cyber exercises.
  ☆17Updated 9 years ago
• adulau / passive-dns-atlas
  Passive DNS collection (and statistics) from RIPE Atlas Sensors
  ☆19Updated 7 years ago
• mixmodeai / bro_intel_linter
  Bro Intel Feed Linter
  ☆26Updated 5 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• tribalchicken / postfix-cuckoolyse
  A Postfix filter which takes a piped message and submits it to Cuckoo Sandbox
  ☆11Updated 8 years ago
• anthonykasza / beginner_brogramming
  scripts to help beginners program in Bro
  ☆20Updated 11 years ago
• mushorg / spamcan
  Spam trap management
  ☆23Updated 7 months ago
• jgamblin / nmaptable
  Transform NMap Scans to an D3.js HTML Table
  ☆59Updated 7 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 9 years ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• cudeso / host-enrich
  Enrich a host with open source security information
  ☆27Updated 9 years ago
• ornl-sava / nv
  Nessus Vulnerability visualization for the web
  ☆31Updated 9 years ago
• joshfaust / ModernHoneyNet
  Modern Honey Net set-up and configure scripts to automate multiple installs.
  ☆8Updated 7 years ago