rocknsm / rock-dashboards

Related projects: ⓘ

• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• timmolter / logstash-dfir
  Logstash configuration files for analyzing various types of logs
  ☆25Updated 7 years ago
• rocknsm / docket
  A RESTful API frontend for Stenographer
  ☆54Updated last year
• corelight / json-streaming-logs
  Bro script package to create JSON formatted logs to stream into data analysis systems.
  ☆27Updated 9 months ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 5 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆95Updated 3 years ago
• TravisFSmith / MyBroElk
  Scripts for Bro IDS and ELK Stack
  ☆56Updated 9 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 3 years ago
• mixmodeai / bro_intel_linter
  Bro Intel Feed Linter
  ☆26Updated 5 years ago
• danielguerra69 / bro-debian-elasticsearch
  bro on debian with elasticsearch support
  ☆24Updated 7 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 2 years ago
• phirelight / bro-scripts
  ☆54Updated this week
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆18Updated 7 months ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆24Updated 4 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆62Updated 10 years ago
• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆109Updated 11 years ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 7 years ago
• Nclose-ZA / elastalert_hive_alerter
  This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.
  ☆27Updated 3 years ago
• MHaggis / sysmon-splunk-app
  Sysmon Splunk App
  ☆46Updated 6 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆56Updated 3 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆92Updated 2 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 6 years ago
• SMAPPER / NXLog-AutoConfig
  ☆48Updated 4 years ago
• ciscocsirt / netsarlacc
  ☆38Updated 6 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• SMAPPER / Logstash-Configs
  Contains log parsers for Logstash for many systems and applications. Also contains many methods of augmenting logs.
  ☆55Updated 6 years ago
• Security-Onion-Solutions / securityonion-docker-hh
  ☆20Updated 4 years ago
• alias454 / graylog-zeek-content-pack
  BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to captu…
  ☆19Updated 4 years ago
• CIS-CERT / CIS-ESP
  ☆44Updated this week