rocknsm / rock-docs

Related projects ⓘ

Alternatives and complementary repositories for rock-docs

• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 3 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆56Updated 3 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆66Updated 4 years ago
• mohlcyber / MISP-STIX-ESM
  Exports MISP events to STIX and ingest into McAfee ESM
  ☆15Updated 4 years ago
• weslambert / securityonion-misp
  ☆34Updated 3 years ago
• rocknsm / docket
  A RESTful API frontend for Stenographer
  ☆55Updated last year
• HASecuritySolutions / elastic_stack
  ☆34Updated 3 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆92Updated 2 years ago
• SecurityRiskAdvisors / TALR
  Threat Alert Logic Repository
  ☆89Updated 5 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆34Updated 5 years ago
• juju4 / ansible-zeek
  setup zeek, previously Bro IDS
  ☆17Updated 3 weeks ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆52Updated last week
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆50Updated 3 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆42Updated 8 years ago
• att / docker-forensics
  Tools to assist in forensicating docker
  ☆80Updated last month
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆96Updated this week
• P4T12ICK / Sigma-Hunting-App
  A Splunk App containing Sigma detection rules, which can be updated from a Git repository.
  ☆107Updated 4 years ago
• olafhartong / TA-Sysmon-deploy
  Deploy and maintain Symon through the Splunk Deployment Sever
  ☆31Updated 4 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• aarju / Kibana_ForensicDashboards
  Dashboards for conducting forensic investigation using windows events in Kibana
  ☆17Updated 5 years ago
• thomaspatzke / elk-detection-lab
  An ELK environment containing interesting security datasets.
  ☆133Updated 4 years ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆72Updated 2 years ago
• Security-Onion-Solutions / securityonion-cloud
  ☆33Updated 2 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆121Updated 3 years ago
• olafhartong / detection-sources
  ☆53Updated 5 years ago
• P4T12ICK / ypsilon
  Automated Use Case Testing
  ☆165Updated 6 years ago
• CIRCL / pystemon
  Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
  ☆43Updated 3 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆53Updated 3 years ago