michaelhidalgo/attack-to-elk external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

michaelhidalgo/attack-to-elk

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/michaelhidalgo/attack-to-elk)

Close

michaelhidalgo / attack-to-elkView on GitHubMore

• External links
• Readme badge

This program exports MITRE ATT&CK framework in ELK dashboard

☆80Dec 8, 2022Updated 3 years ago

Alternatives and similar repositories for attack-to-elk

Users that are interested in attack-to-elk are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• secgroundzero / ossem_modular

  View on GitHub
  OSSEM Modular
  ☆27Jun 29, 2020Updated 5 years ago
• chrislee35 / yaratool

  View on GitHub
  Python libary to normalize Yara signatures
  ☆19Oct 9, 2020Updated 5 years ago
• jbudacki / TTX-Template

  View on GitHub
  Table Top Exercise (TTX) for Computer Security Incident Response (CSIRT) teams. The templatized artifacts provided will hopefully help te…
  ☆44Sep 8, 2020Updated 5 years ago
• neu5ron / WinLogsZero2Hero

  View on GitHub
  This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
  ☆22Jan 30, 2018Updated 8 years ago
• wietze / bsides-ldn-2019

  View on GitHub
  Code and Slides of my BSides London 2019 presentation about Attacker Emulation using CALDERA
  ☆22Jun 9, 2019Updated 7 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• corelight / ecs-mapping

  View on GitHub
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆33May 23, 2026Updated 2 weeks ago
• OTRF / ATTACK-Python-Client

  View on GitHub
  Python Script to access ATT&CK content available in STIX via a public TAXII server
  ☆572Dec 19, 2025Updated 5 months ago
• andrewkroh / beats-playground

  View on GitHub
  Web UI for testing Elastic Beats processors
  ☆18Feb 22, 2026Updated 3 months ago
• ty-elastic / intheirownwords

  View on GitHub
  ☆10Oct 23, 2024Updated last year
• olafhartong / ATTACKdatamap

  View on GitHub
  A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
  ☆358Nov 3, 2020Updated 5 years ago
• securitydistractions / elastimispstash

  View on GitHub
  ☆29Feb 16, 2021Updated 5 years ago
• P4T12ICK / Sigma-Hunting-App

  View on GitHub
  A Splunk App containing Sigma detection rules, which can be updated from a Git repository.
  ☆111Feb 6, 2020Updated 6 years ago
• NVISOsecurity / ee-outliers

  View on GitHub
  Open-source framework to detect outliers in Elasticsearch events
  ☆203May 22, 2023Updated 3 years ago
• cpuu / lmc

  View on GitHub
  Script for automating Linux memory capture and analysis
  ☆13May 6, 2020Updated 6 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• AhmetHan / EDR_Tester

  View on GitHub
  This batch script file wants to check your EDR systems detection and response capabilities in a more noisy way!
  ☆12Jul 3, 2020Updated 5 years ago
• cudeso / CSIRT-Jump-Bag

  View on GitHub
  CSIRT Jump Bag
  ☆27Apr 25, 2024Updated 2 years ago
• edoardogerosa / sentinel-attack

  View on GitHub
  Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
  ☆1,077Nov 28, 2024Updated last year
• n0dec / MalwLess

  View on GitHub
  Test Blue Team detections without running any attack.
  ☆272May 2, 2024Updated 2 years ago
• center-for-threat-informed-defense / top-attack-techniques

  View on GitHub
  Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…
  ☆126May 28, 2025Updated last year
• fashionproof / SearchOpenFileShares

  View on GitHub
  Searches open files shares for password files, database backups, etc. Extend as you see fit
  ☆29Dec 13, 2019Updated 6 years ago
• olafhartong / ThreatHunting

  View on GitHub
  A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
  ☆1,184Jul 26, 2023Updated 2 years ago
• 3CORESec / MAL-CL

  View on GitHub
  MAL-CL (Malicious Command-Line)
  ☆325Jan 10, 2023Updated 3 years ago
• yahoo / winjob

  View on GitHub
  Parser for Windows Scheduled Task files.
  ☆13Apr 26, 2023Updated 3 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• PaloAltoNetworks / minemeld-misp

  View on GitHub
  MineMeld nodes for MISP
  ☆19Jan 23, 2024Updated 2 years ago
• HASecuritySolutions / Presentations

  View on GitHub
  ☆134Mar 21, 2024Updated 2 years ago
• TheHive-Project / Hippocampe

  View on GitHub
  Threat Feed Aggregation, Made Easy
  ☆169Jul 13, 2020Updated 5 years ago
• alphaSeclab / malware-ioc-hash

  View on GitHub
  Collection of malware ioc hashes from blog posts. A Python script is provided to search through it.
  ☆19Sep 10, 2020Updated 5 years ago
• OTRF / detection-hackathon-apt29

  View on GitHub
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆145Oct 12, 2020Updated 5 years ago
• analyzeDFIR / analyzePF

  View on GitHub
  Tool for analysis of Windows Prefetch files
  ☆26Nov 11, 2018Updated 7 years ago
• PaloAltoNetworks / SafeNetworking

  View on GitHub
  Read only mirror. To contribute or submit issues, please go to the website link --->
  ☆15Jul 25, 2023Updated 2 years ago
• kk0m4k / docker-forensics

  View on GitHub
  ☆24Nov 3, 2019Updated 6 years ago
• sumeshi / evtx2es

  View on GitHub
  A command-line tool and Python library for parsing Windows Event Logs and importing the results into Elasticsearch.
  ☆89Jun 2, 2026Updated last week
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• 3c7 / infrastructure-tracking-schema

  View on GitHub
  ☆24Sep 28, 2022Updated 3 years ago
• rabobank-cdc / DeTTECT

  View on GitHub
  Detect Tactics, Techniques & Combat Threats
  ☆2,296Jun 2, 2026Updated last week
• DefensiveOrigins / APT06202001

  View on GitHub
  Applied Purple Teaming - (ITOCI4hr) - Infrastructure, Threat Optics, and Continuous Improvement - June 6, 2020
  ☆324Jan 22, 2021Updated 5 years ago
• DefensiveOrigins / APT-Lab-FastOpticsSetup

  View on GitHub
  Scripts to threat optics stack quickly / abbreviated and automated. Run after APT-Lab-Terraform
  ☆13Oct 24, 2020Updated 5 years ago
• CIRCL / PyCIRCLeanMail

  View on GitHub
  Standalone CIRCLean/KittenGroomer code to sanitize emails.
  ☆11Aug 9, 2018Updated 7 years ago
• fullmetalcache / SharpFiles

  View on GitHub
  ☆56May 13, 2020Updated 6 years ago
• elastiflow / elastiflow_for_elasticsearch

  View on GitHub
  A solution for using the ElastiFlow Unified Collector with the Elastic Stack (Elasticsearch and Kibana).
  ☆26Nov 10, 2025Updated 7 months ago