My logstash plugins. Filter: sig (for security detect -> IOC, sig, New value, Reference, link, frequence, ...). Output: alert created by filter sig, feed FIR (CERT SG)
☆10Jul 26, 2019Updated 6 years ago
Alternatives and similar repositories for logstash-plugins
Users that are interested in logstash-plugins are comparing it to the libraries listed below
Sorting:
- Python script to automatically create sigma rules from The hive observables☆25Mar 17, 2019Updated 6 years ago
- certstream + analytics☆11Jan 17, 2020Updated 6 years ago
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Jan 29, 2020Updated 6 years ago
- Real-time Packet Observation Tool☆39Sep 26, 2023Updated 2 years ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Jun 15, 2021Updated 4 years ago
- Gather and compile open source threat intelligence feeds.☆40Feb 19, 2022Updated 4 years ago
- Hakabana monitoring tool using Haka, ElastcSearch and Kibana☆20Sep 24, 2014Updated 11 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆20May 25, 2022Updated 3 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆53Jul 27, 2022Updated 3 years ago
- Peek into Elasticsearch clusters☆26Feb 19, 2026Updated last week
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Aug 30, 2022Updated 3 years ago
- MISP Workbench☆28Oct 19, 2016Updated 9 years ago
- Zeek package to create JSON formatted logs to stream into data analysis systems.☆30Dec 3, 2025Updated 2 months ago
- Hogzilla is an Intrusion Detection System (IDS) supported by Snort, Apache Spark, HBase and libnDPI, which provides Network Anomaly Detec…☆28Apr 18, 2018Updated 7 years ago
- Meer is a "spooler" for Suricata / Sagan.☆30Jun 21, 2023Updated 2 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆37Nov 9, 2022Updated 3 years ago
- The "Let's-defend-solution" directory contains the answers to all paths of the Let's Defend platform that were saved by the creator 8 mon…☆12Apr 27, 2023Updated 2 years ago
- ☆38Nov 2, 2024Updated last year
- Azure Function App to serve as midddleware for a logon script solution for cloud managed devices.☆15Apr 25, 2023Updated 2 years ago
- A SIEM inspired by HECTOR, built on Django.☆27Apr 16, 2019Updated 6 years ago
- Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.☆87May 8, 2025Updated 9 months ago
- intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; inclu…☆41Mar 17, 2019Updated 6 years ago
- CodeLite Source Code Accesor for the Unreal Engine 4☆11Jul 2, 2020Updated 5 years ago
- A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…☆50Aug 30, 2025Updated 6 months ago
- the fastest way to consume threat intelligence.☆30Mar 9, 2023Updated 2 years ago
- Notes on managing and coordinating the response to major cyber incidents☆41May 30, 2020Updated 5 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆159Mar 10, 2025Updated 11 months ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆40May 18, 2022Updated 3 years ago
- Kind of bomberman made using Unreal Engine. Local Multiplayer☆12Apr 24, 2019Updated 6 years ago
- Slack integration for Claude Code using MCP (Model Context Protocol). Enable your team to use Claude Code collaboratively through Slack.☆11Jun 30, 2025Updated 8 months ago
- Rewriting Anno 1602 from scratch, using extracted assets from the original game.☆10Aug 3, 2018Updated 7 years ago
- Elastic Ingest Documentation☆14Feb 16, 2026Updated last week
- UE4 ik solver experiments with spider legs☆12Apr 24, 2019Updated 6 years ago
- Landscape automaterial with manual painting for Unreal Engine 4☆10May 7, 2025Updated 9 months ago
- Manage Jira assets in your code or CLI☆13Feb 17, 2026Updated last week
- Very basic CLI SIEM (Security Information and Event Management system).☆40Mar 24, 2018Updated 7 years ago
- Architecture Visualization Demo with Unreal Engine 4☆13May 11, 2021Updated 4 years ago
- Endless Reach evolves into a truly high-powered shoot 'em up, built with Unreal Engine 4.☆12Sep 1, 2019Updated 6 years ago
- ☆11Jul 19, 2021Updated 4 years ago