lpredova / ressieLinks
π monitoring, alerting and threat analysis for ELK stack
β11Updated 8 years ago
Alternatives and similar repositories for ressie
Users that are interested in ressie are comparing it to the libraries listed below
Sorting:
- A honeypot proxy for mongodb. When run, this will proxy and log all traffic to a dummy mongodb server.β93Updated 2 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collectionβ33Updated 5 years ago
- Legal, procedural and policies document templates for operating an IRTβ65Updated last year
- Sorta reverse implementation of ShoVAT - Also includes NMAP banner regex resultsβ16Updated 7 years ago
- Shodan.io connector for Phantom Cyber Security Orchestrationβ23Updated 9 years ago
- Maltego transforms for the ThreatCrowd search APIβ49Updated 7 years ago
- Plugins written for CVE-Searchβ27Updated 4 years ago
- cuckoo-1.1 fork with suricata/moloch/clamav and other goodiesβ23Updated 10 years ago
- bro on debian with elasticsearch supportβ24Updated 8 years ago
- Python based client for IBM XForce Exchangeβ26Updated 9 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!β98Updated 9 years ago
- Web service for scanning pcaps with snortβ110Updated 7 years ago
- YAPDNSβ39Updated 10 years ago
- A tool to perform various OSINT techniques, aggregate all the raw data, visualise it on a dashboard, and facilitate alerting and monitoriβ¦β31Updated 7 years ago
- β49Updated 12 years ago
- Combining OSINT sources in Elastic Stackβ78Updated 5 years ago
- Transfer Kippo data to ElasticSearchβ18Updated 10 years ago
- Docker based honeypot (Dionaea & Kippo)β26Updated 10 years ago
- DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text filβ¦β80Updated last year
- Scumblr instructions with custom search providers for monitoring malicous contentβ17Updated 8 years ago
- Yara Dockerfileβ50Updated 3 years ago
- Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...β71Updated 6 years ago
- Ansible playbook to install Malware Information Sharing Platform (MISP)β17Updated 10 years ago
- The currently released SimpleRisk source code.β98Updated last month
- analyze a web-based network traffic πΆ to detect central command and control serversβ79Updated 7 years ago
- A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.β31Updated 8 years ago
- Simple (web-) application vulnerability management systemβ21Updated 11 years ago
- Malware/IOC ingestion and processing engineβ108Updated 7 years ago
- Scripts for Bro IDS and ELK Stackβ57Updated 10 years ago
- An Elasticsearch QUEry Languageβ57Updated 8 years ago