mcholste / elsa
Enterprise Log Search and Archive
☆207Updated 5 years ago
Related projects: ⓘ
- Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases☆148Updated 6 months ago
- ELK configuration files for Forensic Analysts and Incident Handlers (unmaintained)☆179Updated 5 years ago
- A Simple QUEry and Report Tool☆142Updated 5 years ago
- ☆139Updated 3 months ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆446Updated last year
- Isolated, Scalable, & Lightweight Environment for Training☆111Updated 5 years ago
- Contains log parsers for Logstash for many systems and applications. Also contains many methods of augmenting logs.☆55Updated 6 years ago
- Sguil client for NSM☆213Updated 6 months ago
- Docker based Suricata, Elasticsearch, Logstash, Kibana, Scirius aka SELKS☆183Updated 2 years ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆229Updated 3 years ago
- Engine of MineMeld☆141Updated last year
- Alienvault ossim☆118Updated 5 years ago
- DEPRECATED - USE v3 (bearded-avenger)☆227Updated 6 years ago
- Simple block lists hub for PAN-OS DBL feature☆35Updated 5 years ago
- Main MineMeld documentation repo☆378Updated 6 years ago
- Grabs the administrator and authentication logs from the Duo Security API and sends CEF-formatted syslog.☆28Updated 8 years ago
- Splunk App for Linux Auditd☆58Updated 3 years ago
- Docker container for MISP☆96Updated 6 years ago
- Bro IDS Dockerfile☆129Updated 5 years ago
- A collection of Kibana 3.X dashboards from the community☆186Updated 8 years ago
- graph visualization tool☆76Updated 8 years ago
- Suricata Extreme Performance Tuning guide☆202Updated 6 years ago
- OpenFPC, Open Source Full Packet Capture☆68Updated 5 years ago
- Evolving directions on building the best Open Source Forensics VM☆160Updated 6 years ago
- ☆44Updated this week
- vagrant multi-machine: Moloch, Bro,Suricata,ElasticSearch,Kibana☆41Updated 9 years ago
- Salt States for Configuring the SIFT Workstation☆93Updated this week
- Dockerfiles for NSM tools☆84Updated 7 years ago
- A tool for analyzing firewall rules☆157Updated 6 years ago