Automated deployment scripts for the RockNSM network hunting distribution.
☆456Jul 2, 2023Updated 2 years ago
Alternatives and similar repositories for rock
Users that are interested in rock are comparing it to the libraries listed below
Sorting:
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Aug 3, 2019Updated 6 years ago
- Dashboards and loader for ROCK NSM dashboards☆49Mar 13, 2023Updated 2 years ago
- Configuration files for the SOF-ELK VM☆1,720Jan 21, 2026Updated last month
- Bro scripts written by CrowdStrike Services☆150May 3, 2021Updated 4 years ago
- Bro scripts for the ROCK platform. http://rocknsm.io☆34Jul 2, 2023Updated 2 years ago
- Bro Intel Feed Linter☆26Aug 30, 2019Updated 6 years ago
- Dockerfiles for NSM tools☆84Apr 14, 2017Updated 8 years ago
- A RESTful API frontend for Stenographer☆54Dec 7, 2022Updated 3 years ago
- File Scanning Framework☆294Sep 15, 2021Updated 4 years ago
- Analysis scripts for the Bro Intrusion Detection System☆59Feb 26, 2014Updated 12 years ago
- Suricata Extreme Performance Tuning guide☆213Mar 15, 2018Updated 7 years ago
- Bro-IDS scripts☆50Sep 12, 2016Updated 9 years ago
- Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of…☆1,801Jul 26, 2021Updated 4 years ago
- Script for generating Bro intel files from pdf or html reports☆77Dec 7, 2015Updated 10 years ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,105Apr 16, 2021Updated 4 years ago
- Sandia Cyber Omni Tracker (SCOT)☆253Nov 4, 2024Updated last year
- Scirius is a web application for Suricata ruleset management and threat hunting.☆675Dec 23, 2025Updated 2 months ago
- Re-play Security Events☆1,725Mar 20, 2024Updated last year
- A framework that correlates Bro events☆18Oct 25, 2013Updated 12 years ago
- Fast Incident Response☆1,994Feb 17, 2026Updated 2 weeks ago
- The Hunting ELK☆3,912Jun 1, 2024Updated last year
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,515Jan 12, 2026Updated last month
- A Powershell incident response framework☆1,639Nov 22, 2022Updated 3 years ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆937Dec 12, 2023Updated 2 years ago
- A Suricata based NDR distribution☆1,588Sep 13, 2025Updated 5 months ago
- Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch☆61Feb 20, 2017Updated 9 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Nov 19, 2020Updated 5 years ago
- Documentation for ROCK NSM☆27Apr 7, 2021Updated 4 years ago
- ☆519Jan 26, 2021Updated 5 years ago
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆1,113Feb 14, 2026Updated 3 weeks ago
- PowerForensics provides an all in one platform for live disk forensic analysis☆1,428Nov 16, 2023Updated 2 years ago
- Your Everyday Threat Intelligence☆1,954Feb 12, 2026Updated 3 weeks ago
- (OBSOLETE) Plugins for Bro☆53Sep 13, 2017Updated 8 years ago
- Laika BOSS: Object Scanning System☆752Dec 16, 2024Updated last year
- TheHive is a Collaborative Case Management Platform, now distributed as a commercial version☆3,891Jul 25, 2025Updated 7 months ago
- An informational repo about hunting for adversaries in your IT environment.☆1,854Nov 17, 2021Updated 4 years ago
- Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux☆505Oct 21, 2022Updated 3 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Aug 30, 2022Updated 3 years ago
- A repository for using windows event forwarding for incident detection and response☆1,299Sep 8, 2025Updated 5 months ago