shadonet / pfSense-pkg-zeekLinks
Zeek (formerly Bro) Network Security Monitor package for pfSense router/firewall
☆47Updated 4 years ago
Alternatives and similar repositories for pfSense-pkg-zeek
Users that are interested in pfSense-pkg-zeek are comparing it to the libraries listed below
Sorting:
- Run zeek with zeekctl in docker☆55Updated 11 months ago
- Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases☆155Updated last year
- MISP Docker (XME edition)☆282Updated last year
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- Salt States for Configuring the SIFT Workstation☆105Updated 3 weeks ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- ☆139Updated 3 weeks ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 4 years ago
- Kibana 7 Templates for Suricata IDPS Threat Hunting☆42Updated last week
- Scripts to generate an Internet simulation☆35Updated last year
- Documentation for ROCK NSM☆26Updated 4 years ago
- ☆49Updated 5 years ago
- ☆220Updated last year
- Zeek Log Cheatsheets☆297Updated 3 weeks ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated 2 years ago
- A curated list of awesome things related to TheHive & Cortex☆183Updated 3 years ago
- Run Velociraptor on Security Onion☆39Updated 3 years ago
- A website and framework for testing NIDS detection☆57Updated 4 years ago
- Cisco eStreamer client☆24Updated 3 years ago
- Contains Logstash related content including tons of Logstash configurations☆254Updated 4 years ago
- Documentation of Cortex☆174Updated last year
- ☆28Updated 5 years ago
- Example configuration files for Logstash☆44Updated 5 years ago
- Evolving directions on building the best Open Source Forensics VM☆161Updated 7 years ago
- This is a repository for freq.py and freq_server.py☆209Updated 5 years ago
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆27Updated 4 years ago
- Python API Client for TheHive☆232Updated this week
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 3 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆105Updated last year
- WebUI of MineMeld☆43Updated 2 years ago