kpolley / RELKLinks
RELK -- The Research Elastic Stack (Kafka, Beats, Zookeeper, Logstash, ElasticSearch, Kibana, Spark, & Jupyter -- All in Docker)
☆26Updated 5 years ago
Alternatives and similar repositories for RELK
Users that are interested in RELK are comparing it to the libraries listed below
Sorting:
- Vulnerability Assessment Module - OpenVas with Elastic stack using VulnWhisperer☆19Updated 5 years ago
- Porting Suricata to Bro signatures☆6Updated 5 years ago
- Scripts to inject demo data and network traffic into an existing Alienvault/OSSIM installation☆21Updated 7 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- ☆20Updated 5 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- ☆15Updated 7 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- A tool to convert MISP XML files (events and attributes) into graphs☆20Updated 8 years ago
- ☆34Updated 3 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆26Updated 5 years ago
- A repository to share contributions related to TheHive Project☆22Updated 3 years ago
- pcapdj - dispatch pcap files☆45Updated 4 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collection☆34Updated 4 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- ☆23Updated 5 years ago
- Network sinkhole for isolated malware analysis☆40Updated 7 years ago
- ☆18Updated 6 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- Imports Alienvault OTX pulses to a MISP instance☆52Updated 3 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago
- Snort + Pulledpork + Websnort in Docker!☆21Updated 3 years ago
- Zeek support for Community ID flow hashing.☆35Updated last year
- My logstash plugins. Filter: sig (for security detect -> IOC, sig, New value, Reference, link, frequence, ...). Output: alert created by …☆10Updated 5 years ago
- Specifications used in the MISP project including MISP core format☆51Updated 5 months ago
- Very basic CLI SIEM (Security Information and Event Management system).☆39Updated 7 years ago
- ☆27Updated 5 years ago
- Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes☆16Updated 2 years ago