shadonet / pfSense-pkg-zeekLinks
Zeek (formerly Bro) Network Security Monitor package for pfSense router/firewall
☆46Updated 3 years ago
Alternatives and similar repositories for pfSense-pkg-zeek
Users that are interested in pfSense-pkg-zeek are comparing it to the libraries listed below
Sorting:
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- Run zeek with zeekctl in docker☆51Updated 9 months ago
- ☆29Updated 4 years ago
- Run Velociraptor on Security Onion☆38Updated 2 years ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- MineMeld nodes for MISP☆19Updated last year
- Scripts to generate an Internet simulation☆35Updated 10 months ago
- ☆137Updated this week
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- automate your MISP installs☆68Updated 4 years ago
- A tool to host an Internet simulation☆55Updated last month
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆110Updated last year
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆27Updated 4 years ago
- ☆54Updated 4 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 3 years ago
- Documentation for ROCK NSM☆26Updated 4 years ago
- ☆35Updated 4 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆66Updated 3 years ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 4 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.☆82Updated last month
- ☆28Updated 5 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 3 years ago
- Cisco eStreamer client☆24Updated 2 years ago
- A curated list of awesome things related to TheHive & Cortex☆180Updated 3 years ago
- Ansible playbook to convert Sigma rules to ElastAlert rules☆10Updated 4 years ago