swimlane / elk-tls-dockerLinks
This repository contains code to create a ELK stack with certificates & security enabled using docker-compose
☆191Updated last year
Alternatives and similar repositories for elk-tls-docker
Users that are interested in elk-tls-docker are comparing it to the libraries listed below
Sorting:
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- Repo containing docker-compose files and setup scripts without having to clone the individual reternal components☆109Updated 4 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆151Updated 3 months ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- A python package for use in generating fake data for SOC and security automation.☆169Updated 3 months ago
- Purple Teaming Attack & Hunt Lab - Terraform☆159Updated 3 years ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆38Updated last year
- Repository for SPEED SIEM Use Case Framework☆55Updated 5 years ago
- Build a attack range in your local machine☆131Updated 2 years ago
- PowerShell - Endpoint Analysis Solution Your Windows Intranet Needs☆48Updated 6 months ago
- All-in-one bundle of MISP, TheHive and Cortex☆169Updated 2 years ago
- Detection Ideas & Rules repository.☆179Updated 3 years ago
- A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.☆138Updated 11 months ago
- A collection of Powershell scripts that will help automate the build process for a Marvel domain.☆147Updated last year
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated 2 months ago
- Attack Range to test detection against nativel serverless cloud services and environments☆35Updated 3 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆33Updated 5 years ago
- A curated list of awesome things related to TheHive & Cortex☆180Updated 3 years ago
- This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.☆82Updated 2 years ago
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆134Updated 2 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆188Updated 4 years ago
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆154Updated 3 years ago
- My conference presentations☆66Updated last year
- Converts Sigma detection rules to a Splunk alert configuration.☆111Updated 5 years ago
- This repo is where I store my Threat Hunting ideas/content☆88Updated 2 years ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago
- The Infosec Community Definitive Guide to Jupyter Notebooks☆122Updated 4 years ago
- Convert Sigma rules to Wazuh rules☆67Updated last year
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆109Updated 2 years ago