michaelhidalgo/attack-to-elk external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

michaelhidalgo/attack-to-elk

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/michaelhidalgo/attack-to-elk)

Close

michaelhidalgo / attack-to-elkView on GitHubMore

• External links
• Readme badge

This program exports MITRE ATT&CK framework in ELK dashboard

☆80Dec 8, 2022Updated 3 years ago

Alternatives and similar repositories for attack-to-elk

Users that are interested in attack-to-elk are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• secgroundzero / ossem_modular

  View on GitHub
  OSSEM Modular
  ☆27Jun 29, 2020Updated 5 years ago
• chrislee35 / yaratool

  View on GitHub
  Python libary to normalize Yara signatures
  ☆19Oct 9, 2020Updated 5 years ago
• fastlorenzo / redelk-kibana-app

  View on GitHub
  Kibana app for RedELK
  ☆18Mar 19, 2023Updated 3 years ago
• jbudacki / TTX-Template

  View on GitHub
  Table Top Exercise (TTX) for Computer Security Incident Response (CSIRT) teams. The templatized artifacts provided will hopefully help te…
  ☆44Sep 8, 2020Updated 5 years ago
• neu5ron / WinLogsZero2Hero

  View on GitHub
  This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
  ☆22Jan 30, 2018Updated 8 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• wietze / bsides-ldn-2019

  View on GitHub
  Code and Slides of my BSides London 2019 presentation about Attacker Emulation using CALDERA
  ☆22Jun 9, 2019Updated 6 years ago
• corelight / ecs-mapping

  View on GitHub
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆33Updated this week
• OTRF / ATTACK-Python-Client

  View on GitHub
  Python Script to access ATT&CK content available in STIX via a public TAXII server
  ☆568Dec 19, 2025Updated 3 months ago
• andrewkroh / beats-playground

  View on GitHub
  Web UI for testing Elastic Beats processors
  ☆18Feb 22, 2026Updated last month
• olafhartong / ATTACKdatamap

  View on GitHub
  A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
  ☆356Nov 3, 2020Updated 5 years ago
• securitydistractions / elastimispstash

  View on GitHub
  ☆29Feb 16, 2021Updated 5 years ago
• P4T12ICK / Sigma-Hunting-App

  View on GitHub
  A Splunk App containing Sigma detection rules, which can be updated from a Git repository.
  ☆111Feb 6, 2020Updated 6 years ago
• NVISOsecurity / ee-outliers

  View on GitHub
  Open-source framework to detect outliers in Elasticsearch events
  ☆205May 22, 2023Updated 2 years ago
• cpuu / lmc

  View on GitHub
  Script for automating Linux memory capture and analysis
  ☆13May 6, 2020Updated 5 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• AhmetHan / EDR_Tester

  View on GitHub
  This batch script file wants to check your EDR systems detection and response capabilities in a more noisy way!
  ☆12Jul 3, 2020Updated 5 years ago
• mosse-security / tactical-lab

  View on GitHub
  A curated list of tools, papers and techniques for Windows exploitation and incident response.
  ☆41Apr 10, 2016Updated 9 years ago
• cudeso / CSIRT-Jump-Bag

  View on GitHub
  CSIRT Jump Bag
  ☆27Apr 25, 2024Updated last year
• edoardogerosa / sentinel-attack

  View on GitHub
  Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
  ☆1,080Nov 28, 2024Updated last year
• n0dec / MalwLess

  View on GitHub
  Test Blue Team detections without running any attack.
  ☆272May 2, 2024Updated last year
• center-for-threat-informed-defense / top-attack-techniques

  View on GitHub
  Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…
  ☆123May 28, 2025Updated 10 months ago
• fashionproof / SearchOpenFileShares

  View on GitHub
  Searches open files shares for password files, database backups, etc. Extend as you see fit
  ☆29Dec 13, 2019Updated 6 years ago
• olafhartong / ThreatHunting

  View on GitHub
  A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
  ☆1,176Jul 26, 2023Updated 2 years ago
• yahoo / winjob

  View on GitHub
  Parser for Windows Scheduled Task files.
  ☆13Apr 26, 2023Updated 2 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• 3CORESec / MAL-CL

  View on GitHub
  MAL-CL (Malicious Command-Line)
  ☆324Jan 10, 2023Updated 3 years ago
• PaloAltoNetworks / minemeld-misp

  View on GitHub
  MineMeld nodes for MISP
  ☆19Jan 23, 2024Updated 2 years ago
• HASecuritySolutions / Presentations

  View on GitHub
  ☆134Mar 21, 2024Updated 2 years ago
• alphaSeclab / malware-ioc-hash

  View on GitHub
  Collection of malware ioc hashes from blog posts. A Python script is provided to search through it.
  ☆19Sep 10, 2020Updated 5 years ago
• mitre / jsonix

  View on GitHub
  Powerful XML<->JSON JavaScript mapping library.
  ☆15Apr 1, 2026Updated last week
• chihebchebbi / Sentinel2Attack

  View on GitHub
  ☆14Mar 5, 2021Updated 5 years ago
• OTRF / detection-hackathon-apt29

  View on GitHub
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆142Oct 12, 2020Updated 5 years ago
• sumeshi / evtx2es

  View on GitHub
  A fast library for parsing and importing Windows Event Logs into Elasticsearch.
  ☆86Mar 30, 2026Updated last week
• analyzeDFIR / analyzePF

  View on GitHub
  Tool for analysis of Windows Prefetch files
  ☆26Nov 11, 2018Updated 7 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• kk0m4k / docker-forensics

  View on GitHub
  ☆24Nov 3, 2019Updated 6 years ago
• DefensiveOrigins / APT06202001

  View on GitHub
  Applied Purple Teaming - (ITOCI4hr) - Infrastructure, Threat Optics, and Continuous Improvement - June 6, 2020
  ☆323Jan 22, 2021Updated 5 years ago
• rabobank-cdc / DeTTECT

  View on GitHub
  Detect Tactics, Techniques & Combat Threats
  ☆2,275Jan 21, 2026Updated 2 months ago
• 3c7 / infrastructure-tracking-schema

  View on GitHub
  ☆24Sep 28, 2022Updated 3 years ago
• CIRCL / PyCIRCLeanMail

  View on GitHub
  Standalone CIRCLean/KittenGroomer code to sanitize emails.
  ☆11Aug 9, 2018Updated 7 years ago
• DefensiveOrigins / APT-Lab-FastOpticsSetup

  View on GitHub
  Scripts to threat optics stack quickly / abbreviated and automated. Run after APT-Lab-Terraform
  ☆13Oct 24, 2020Updated 5 years ago
• fullmetalcache / SharpFiles

  View on GitHub
  ☆57May 13, 2020Updated 5 years ago