scalyr / samplesLinks
Data samples for Observability and SIEM
☆15Updated 3 months ago
Alternatives and similar repositories for samples
Users that are interested in samples are comparing it to the libraries listed below
Sorting:
- Simple integration script for 3rd party systems such as SIEMs. Offers command line, file or syslog output in CEF, JSON or key-value pair …☆137Updated 2 years ago
- Scripts that cover the basics of interacting with the AMP for Endpoints API☆17Updated 6 years ago
- A python module for working with ATT&CK☆654Updated last week
- Fortinet products logs to Elasticsearch☆102Updated this week
- OpenCTI Connectors☆514Updated this week
- Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-t…☆1,365Updated last week
- A knowledge base of actionable Incident Response techniques☆662Updated 3 years ago
- TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE AT…☆545Updated 9 months ago
- A repository of curated datasets from various attacks☆726Updated this week
- Cyber Incident Response Team Playbook Battle Cards☆426Updated last year
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆452Updated last week
- IronSkillet is a set of day-one configuration templates for PAN-OS to enable alignment with security best practices. See the Quick Start …☆217Updated 2 years ago
- This repository contains Community and Field contributed content for LogScale☆315Updated last week
- Collaborative Incident Response platform☆1,381Updated last week
- Splunk Security Content☆1,567Updated this week
- ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…☆507Updated last week
- SIEM Tactics, Techiques, and Procedures☆692Updated last week
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆1,206Updated last week
- Cisco eStreamer client☆24Updated 3 years ago
- Incident Response Methodologies 2022☆1,101Updated 9 months ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆960Updated 2 years ago
- Splunk Boss of the SOC version 3 dataset.☆407Updated 5 years ago
- Great List of Resources to Build an Enterprise Grade Home Lab☆905Updated 2 years ago
- Sysmon configuration file template with default high-quality event tracing☆559Updated 2 weeks ago
- A set of Zeek scripts to detect ATT&CK techniques.☆618Updated last year
- A production ready Dockered MISP☆320Updated 2 weeks ago
- This project is a SIEM with SIRP and Threat Intel, all in one.☆461Updated last year
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆497Updated last year
- Re-play Security Events☆1,719Updated last year
- A utility to safely generate malicious network traffic patterns and evaluate controls.☆1,349Updated last year