seanthegeek / pyldfire

Related projects: ⓘ

• PaloAltoNetworks / minemeld-node-prototypes
  Prototypes for MineMeld nodes
  ☆39Updated 2 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• IBM / data-import
  ☆48Updated 8 years ago
• PaloAltoNetworks / minemeld-core
  Engine of MineMeld
  ☆141Updated last year
• carbonblack / cbfeeds
  Carbon Black Feeds
  ☆70Updated last year
• PaloAltoNetworks / autofocus-lenz
  A command line utility to aid in using autofocus for IR and research
  ☆27Updated 4 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 3 years ago
• darkphyber / bro
  ☆21Updated this week
• phirelight / bro-scripts
  ☆54Updated this week
• SecurityNik / QRadar---Threat-Intelligence-On-The-Cheap
  Download a list of suspected malicious IPs and Domains. Create a QRadar Reference Set. Search Your Environment For Malicious IPs
  ☆66Updated 3 years ago
• CriticalPathSecurity / zeek-scripts
  Bro Detection Scripts
  ☆10Updated 3 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• SMAPPER / Logstash-Configs
  Contains log parsers for Logstash for many systems and applications. Also contains many methods of augmenting logs.
  ☆55Updated 6 years ago
• CrowdStrike / cs-bro
  Bro scripts written by CrowdStrike Services
  ☆145Updated 3 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆62Updated 10 years ago
• aboutsecurity / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆116Updated 6 years ago
• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆109Updated 11 years ago
• P1llus / ArcSight-Rest
  Python library for the ArcSight logger REST API
  ☆27Updated 2 years ago
• libresec / duo-log-grabber
  Grabs the administrator and authentication logs from the Duo Security API and sends CEF-formatted syslog.
  ☆28Updated 8 years ago
• certau / cti-toolkit
  ☆59Updated this week
• sans-blue-team / freq.py
  Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…
  ☆123Updated last year
• PaloAltoNetworks / report_to_misp
  Parse a report and import the events into MISP
  ☆28Updated 8 years ago
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 6 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆56Updated 3 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆181Updated last year
• criticalstack / bro-scripts
  ☆72Updated 2 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 2 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆64Updated 3 years ago
• NdS-Research-Facilities / QRadar-ruleset
  QRadar Export the rule set for printing
  ☆21Updated 6 years ago
• PaloAltoNetworks / ioc-parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆72Updated 3 months ago