opc40772 / suricata-graylog
☆23Updated 5 years ago
Alternatives and similar repositories for suricata-graylog:
Users that are interested in suricata-graylog are comparing it to the libraries listed below
- How to send structured Snort IDS alert logs into Graylog☆27Updated last year
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆24Updated 6 years ago
- Simple block lists hub for PAN-OS DBL feature☆35Updated 6 years ago
- OwlH Master API Web User Interface☆12Updated 10 months ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- ioc2rpz is a place where threat intelligence meets DNS.☆109Updated 2 months ago
- BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to captu…☆19Updated 4 years ago
- Detect HTTP stalling attacks like slowloris with Bro☆19Updated 7 years ago
- Experimental DNS logs pipeline based on Pi-hole dnsmasq logs, ELK stack, and Filebeat. Sample configs included.☆30Updated last year
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- Example configuration files for Logstash☆44Updated 5 years ago
- ☆37Updated 5 years ago
- WebUI of MineMeld☆43Updated 2 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collection☆34Updated 4 years ago
- Kibana 7 Templates for Suricata IDPS Threat Hunting☆40Updated 2 years ago
- Dashboards and loader for ROCK NSM dashboards☆48Updated 2 years ago
- Add POST body excerpt to Bro's HTTP log☆14Updated 10 months ago
- Snort IDS/IPS log analytics using the Elastic Stack.☆86Updated 3 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated last year
- ☆12Updated 4 years ago
- An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.☆15Updated 3 years ago
- App for storing FireHOL feeds (https://github.com/firehol/blocklist-ipsets) with a history of adding and removing each address☆33Updated 2 years ago
- Fortigate Log Parser☆16Updated last year
- Alert Wizard plugin for Graylog to manage the alert rules☆47Updated 2 weeks ago
- MineMeld nodes for MISP☆19Updated last year
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆53Updated last week
- Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases☆153Updated last year
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- ☆38Updated 6 years ago
- The PCAP Analyzer for Splunk includes useful Dashboards to analyze network packet capture files from Wireshark or Network Monitor (.pcap)…☆43Updated last year