lmakonem / ELK-SIEM-Ansible-PlaybookLinks
Ansible Playbook to install the ELK Stack
☆43Updated 4 years ago
Alternatives and similar repositories for ELK-SIEM-Ansible-Playbook
Users that are interested in ELK-SIEM-Ansible-Playbook are comparing it to the libraries listed below
Sorting:
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- ☆17Updated 2 years ago
- Wazuh - Splunk App☆55Updated 8 months ago
- Run zeek with zeekctl in docker☆52Updated 8 months ago
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆109Updated 2 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆70Updated 2 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 3 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- ☆17Updated 3 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆66Updated 3 years ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆27Updated 4 years ago
- Installation script for ELK stack to make life easy.☆68Updated 5 years ago
- ☆34Updated 4 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated this week
- All-in-one bundle of MISP, TheHive and Cortex☆169Updated 2 years ago
- Kibana 7 Templates for Suricata IDPS Threat Hunting☆40Updated 2 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago
- Useful scripts for those administering Wazuh☆83Updated this week
- ☆54Updated 3 years ago
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆24Updated 6 years ago
- ☆88Updated this week
- Convert Sigma rules to Wazuh rules☆65Updated last year
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.☆15Updated 3 years ago
- Scripts to inject demo data and network traffic into an existing Alienvault/OSSIM installation☆21Updated 7 years ago
- Official Palo Alto Networks MineMeld docker☆17Updated 5 years ago
- ☆48Updated last week
- ☆34Updated last year
- ☆31Updated 3 years ago