swimlane / elk-tls-docker
This repository contains code to create a ELK stack with certificates & security enabled using docker-compose
☆189Updated 9 months ago
Alternatives and similar repositories for elk-tls-docker:
Users that are interested in elk-tls-docker are comparing it to the libraries listed below
- Repo containing docker-compose files and setup scripts without having to clone the individual reternal components☆109Updated 4 years ago
- Repository for SPEED SIEM Use Case Framework☆53Updated 4 years ago
- PowerShell - Endpoint Analysis Solution Your Windows Intranet Needs☆47Updated 3 months ago
- ☆77Updated 5 years ago
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆107Updated 2 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆33Updated 4 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated last week
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- Detection Ideas & Rules repository.☆179Updated 3 years ago
- A python package for use in generating fake data for SOC and security automation.☆168Updated 3 weeks ago
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆132Updated 2 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.☆44Updated 4 years ago
- This repo is where I store my Threat Hunting ideas/content☆87Updated last year
- Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228☆149Updated 3 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆149Updated 2 weeks ago
- All-in-one bundle of MISP, TheHive and Cortex☆170Updated 2 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆114Updated last year
- Purple Teaming Attack & Hunt Lab - Terraform☆158Updated 3 years ago
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated 9 months ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆186Updated 3 years ago
- OSSEM Data Dictionaries☆59Updated 2 months ago
- Notes on managing and coordinating the response to major cyber incidents☆40Updated 4 years ago
- Ansible Playbook to install the ELK Stack☆42Updated 4 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆52Updated 2 years ago
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- A community event for security researchers to share their favorite notebooks☆107Updated last year
- The Infosec Community Definitive Guide to Jupyter Notebooks☆121Updated 4 years ago
- Build a attack range in your local machine☆130Updated last year