sandflysecurity / sandfly-setupLinks
Sandfly Security Agentless Compromise and Intrusion Detection System For Linux
☆81Updated last week
Alternatives and similar repositories for sandfly-setup
Users that are interested in sandfly-setup are comparing it to the libraries listed below
Sorting:
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries☆49Updated 2 years ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 4 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆45Updated last year
- Fast IOC and YARA Scanner☆82Updated 5 years ago
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆62Updated 2 years ago
- ☆80Updated 2 years ago
- CSI SIEM☆110Updated 2 years ago
- ☆43Updated last month
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- This contains a list of Blue Team Tools that I use daily, and have stored here for reference.☆34Updated 7 years ago
- Windows Security Logging☆43Updated 3 years ago
- Web interface for monitoring and interacting with Netflow data stored in Silk repositories.☆13Updated 6 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆73Updated 2 years ago
- ☆55Updated last week
- On demand query API for https://github.com/davidonzo/Threat-Intel project.☆56Updated last year
- Helpful tools for interacting with a GoPhish phishing instance☆49Updated 3 weeks ago
- Passive OS detection based on SYN packets without Transmitting any Data☆47Updated 2 years ago
- an awesome list of active defense resources☆124Updated 5 years ago
- Run Velociraptor on Security Onion☆39Updated 3 years ago
- An ongoing & curated collection of awesome software best practices and remediation techniques, libraries and frameworks, E-books and vide…☆46Updated 2 years ago
- This script provides a Python library with methods to authenticate to various sources of threat intelligence and query IPs for the latest…☆18Updated 6 months ago
- Tool used to perform threat intelligence against packet data☆35Updated 6 months ago
- Automatic detection engineering technical state compliance☆55Updated last year
- ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)☆46Updated 4 years ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆99Updated last year
- 🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)☆96Updated 3 years ago
- A MITRE ATT&CK Lookup Tool☆45Updated last year
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.☆23Updated 8 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago