nickmaccarthy / CEFly
CEF ( Common Event Format ) exporting app for Splunk written in python
☆15Updated 11 years ago
Alternatives and similar repositories for CEFly:
Users that are interested in CEFly are comparing it to the libraries listed below
- Compare multiple log formats against malware reputation lists.☆88Updated 7 years ago
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆18Updated 11 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- Scripts for Bro IDS and ELK Stack☆56Updated 9 years ago
- ☆47Updated 9 years ago
- Python library for the ArcSight logger REST API☆27Updated 3 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- Dashboards and loader for ROCK NSM dashboards☆48Updated 2 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- setup zeek, previously Bro IDS☆18Updated this week
- Scripts and integrations for OSSEC☆39Updated 9 years ago
- Harbinger Threat Intelligence☆82Updated 9 years ago
- Bro scripts for the ROCK platform. http://rocknsm.io☆33Updated last year
- ☆38Updated 6 years ago
- Python PCAP Examiner☆23Updated 3 years ago
- Queries to parse sysmon event log file with microsoft logparser☆56Updated 10 years ago
- **BETA** A simple buildscript for network security monitoring on RHEL/CentOS☆31Updated 7 years ago
- Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was …☆77Updated 7 years ago
- MISP - Ansible installation script☆22Updated 6 years ago
- Example Splunk Alert Scripts☆20Updated 10 years ago
- Python script to pull various IOCs from PDFs☆15Updated 10 years ago
- Improvements of/over the original rule2alert☆56Updated 10 years ago
- Dockerfiles for NSM tools☆84Updated 7 years ago
- ☆36Updated 8 years ago
- brocon-15 scripts☆13Updated 8 years ago
- Scripts used to create ISO installers of ROCK for offline installation.☆10Updated 2 years ago
- Bro Intel Feed Linter☆26Updated 5 years ago
- Docker container for MISP☆96Updated 6 years ago
- A collection of bro_scripts and signatures☆26Updated 5 years ago
- Python script that gets IOC from MISP and converts it into BRO intel files.☆13Updated 8 years ago