swiftbird07 / elastic-agent-androidLinks
๐ Enterprise-grade Android Monitoring with Elastic: Streamline Fleet Management and Security Insights. ๐
โ11Updated 10 months ago
Alternatives and similar repositories for elastic-agent-android
Users that are interested in elastic-agent-android are comparing it to the libraries listed below
Sorting:
- Transform Linux Audit logs for SIEM usageโ811Updated last month
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs anโฆโ452Updated last week
- OpenCTI Connectorsโ514Updated this week
- Zeek-Formatted Threat Intelligence Feedsโ383Updated this week
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.โ934Updated last year
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)โ527Updated this week
- TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE ATโฆโ545Updated 9 months ago
- ReversingLabs YARA Rulesโ892Updated 3 months ago
- A knowledge base of actionable Incident Response techniquesโ662Updated 3 years ago
- Configuration files for the SOF-ELK VMโ1,713Updated 3 weeks ago
- SIEM Logstash parsing for more than hundred technologiesโ193Updated 2 weeks ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logsโ778Updated this week
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Respondersโ960Updated 2 years ago
- STIX data representing MITRE ATT&CKโ525Updated last month
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!โ1,206Updated last week
- Docker image for MISPโ136Updated this week
- Splunk Content Control Toolโ127Updated this week
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs anโฆโ2,334Updated last week
- A set of Zeek scripts to detect ATT&CK techniques.โ618Updated last year
- A repository of curated datasets from various attacksโ726Updated this week
- This repository contains Community and Field contributed content for LogScaleโ315Updated 2 weeks ago
- A python module for working with ATT&CKโ654Updated last week
- Sysmon configuration file template with default high-quality event tracingโ567Updated 3 weeks ago
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multipleโฆโ745Updated last year
- This repository contains a few examples of actions that can be added to rules within Elastic Security.โ24Updated last year
- Splunk spec files version historyโ41Updated this week
- Cyber Analytics Repositoryโ978Updated 8 months ago
- The CrowdStrike Falcon SDK for Pythonโ467Updated last month
- Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-redโฆโ1,000Updated 5 months ago
- Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-tโฆโ1,371Updated this week