lmakonem / ELK-SIEM-Ansible-Playbook
Ansible Playbook to install the ELK Stack
☆40Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for ELK-SIEM-Ansible-Playbook
- ☆15Updated last year
- Run Velociraptor on Security Onion☆34Updated 2 years ago
- Installation script for ELK stack to make life easy.☆67Updated 4 years ago
- Wazuh - Splunk App☆50Updated 2 months ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆66Updated last year
- Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …☆27Updated 3 months ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆26Updated 4 years ago
- Useful scripts for those administering Wazuh☆72Updated 3 months ago
- Run zeek with zeekctl in docker☆50Updated 2 months ago
- ☆33Updated last year
- ☆29Updated 3 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆61Updated 3 years ago
- ☆17Updated 2 years ago
- ☆47Updated this week
- Kibana 7 Templates for Suricata IDPS Threat Hunting☆39Updated 2 years ago
- ☆31Updated 2 years ago
- Sharing Threat Hunting runbooks☆24Updated 5 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 2 years ago
- ☆48Updated this week
- Convert Sigma rules to Wazuh rules☆58Updated 7 months ago
- Tools for Wazuh by Juan C. Tello☆14Updated 2 years ago
- ☆34Updated 3 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- Repository for SPEED SIEM Use Case Framework☆52Updated 4 years ago
- ☆15Updated 3 years ago
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆105Updated 2 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- Extracts fields from zeek logs, compatible with zeek-cut☆19Updated 4 months ago