swiftbird07 / elastic-agent-android
π Enterprise-grade Android Monitoring with Elastic: Streamline Fleet Management and Security Insights. π
β10Updated last month
Alternatives and similar repositories for elastic-agent-android:
Users that are interested in elastic-agent-android are comparing it to the libraries listed below
- Docker image for MISPβ125Updated last month
- SIEM Logstash parsing for more than hundred technologiesβ184Updated last week
- Transform Linux Audit logs for SIEM usageβ761Updated this week
- SOCFortress CoPilotβ270Updated this week
- Fortinet products logs to Elasticsearchβ98Updated 7 months ago
- The Sigma command line interface based on pySigmaβ152Updated last week
- Zeek-Formatted Threat Intelligence Feedsβ359Updated this week
- This repository contains a few examples of actions that can be added to rules within Elastic Security.β22Updated 2 months ago
- This repository contains Community and Field contributed content for LogScaleβ215Updated this week
- A curated list of awesome things related to Suricataβ166Updated last month
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniquesβ357Updated 3 months ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters β¦β236Updated last month
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)β446Updated this week
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.β150Updated 2 months ago
- A production ready Dockered MISPβ228Updated this week
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs anβ¦β402Updated 3 weeks ago
- OpenCTI Docker deployment helpersβ182Updated this week
- OpenCTI Connectorsβ433Updated this week
- A standard for reducing log volume without sacrificing analytical capabilityβ204Updated 2 months ago
- Documentation and scripts to properly enable Windows event logs.β605Updated last year
- Sysmon configuration file template with default high-quality event tracingβ482Updated last year
- MITRE Calderaβ’ for OT Plugins & Capabilitiesβ207Updated 5 months ago
- Indicators of Compromiseβ192Updated this week
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multipleβ¦β665Updated 2 months ago
- RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create highβ¦β53Updated last month
- Stand up a simple Elastic container with Kibana, Fleet, and the Detection Engineβ454Updated 3 weeks ago
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!β726Updated last month
- SIEGMA - Transform Sigma rules into SIEM consumablesβ149Updated last month
- β69Updated 3 weeks ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Respondersβ901Updated last year