lmakonem / ELK-SIEM-Ansible-Playbook

Related projects ⓘ

Alternatives and complementary repositories for ELK-SIEM-Ansible-Playbook

• juaromu / wazuh-misp
  ☆15Updated last year
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆34Updated 2 years ago
• josh-thurston / easyELK
  Installation script for ELK stack to make life easy.
  ☆67Updated 4 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆66Updated last year
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆49Updated last month
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆61Updated 3 years ago
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆105Updated 2 years ago
• SHolzhauer / elastic-tip
  Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …
  ☆27Updated 3 months ago
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆50Updated last month
• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆25Updated 5 years ago
• nobody-cares / Incident-Response-Plan
  Incident Response Plan for all major incidents including cheatsheets for both linux and windows
  ☆13Updated 4 years ago
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆71Updated 2 months ago
• Acheron-VAF / Acheron
  Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.
  ☆31Updated last year
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆38Updated 2 years ago
• Security-Onion-Solutions / securityonion-docs
  ☆84Updated this week
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆61Updated 2 years ago
• PolitoInc / ELK-Hunting
  Threat Hunting with ELK Workshop (InfoSecWorld 2017)
  ☆66Updated 7 years ago
• dirtyfilthy / siem-from-scratch
  SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab
  ☆38Updated 4 years ago
• Security-Onion-Solutions / securityonion-soc
  ☆46Updated this week
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆56Updated 6 months ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆20Updated 2 years ago
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆24Updated 5 years ago
• ReconInfoSec / graylog2thehive
  Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.
  ☆44Updated 4 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• StamusNetworks / KTS7
  Kibana 7 Templates for Suricata IDPS Threat Hunting
  ☆38Updated 2 years ago
• activecm / zcutter
  Extracts fields from zeek logs, compatible with zeek-cut
  ☆19Updated 3 months ago
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆24Updated last month
• DefensiveOrigins / Training
  Defensive Origins Training Schedule
  ☆35Updated 10 months ago
• OpenSecureCo / Wazuh
  ☆31Updated 2 years ago
• Hestat / soc-threat-hunting
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆26Updated 4 years ago