sysflow-telemetry / sf-collectorLinks
SysFlow collection probe
☆16Updated 5 months ago
Alternatives and similar repositories for sf-collector
Users that are interested in sf-collector are comparing it to the libraries listed below
Sorting:
- SysFlow edge processing pipeline☆16Updated 5 months ago
- SysFlow documentation and issues tracker☆46Updated 9 months ago
- SysFlow project APIs☆16Updated last year
- This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…☆16Updated 2 years ago
- Augmentation to Machine Readable CTI☆31Updated last month
- Firepit - STIX Columnar Storage☆16Updated last year
- OCA-wide documentation shared by all sub-projects and repositories☆33Updated 8 months ago
- A CALDERA plugin☆77Updated 3 weeks ago
- Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…☆65Updated last week
- Red Canary's eBPF Sensor☆107Updated 2 weeks ago
- Zeek support for Community ID flow hashing.☆35Updated last year
- Convert Sigma Rules to different formats☆11Updated 10 months ago
- A simple way of detecting multithreaded exfiltration in Zeek.☆14Updated last month
- This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)☆33Updated last year
- A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…☆23Updated last year
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 3 years ago
- A Zeek package that detects Zoom logins and meeting joins☆12Updated 5 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago
- OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…☆41Updated last year
- Zeek plugin to generate data on per-packet sizes and intervals☆14Updated 5 years ago
- ☆44Updated 3 months ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 9 months ago
- Kestrel Jupyter Notebook Kernel☆9Updated last year
- A document tagging library☆30Updated 3 months ago
- A MITRE Caldera plugin☆43Updated 7 months ago
- Alternative YARA scanning engine☆70Updated 2 years ago
- Plugin for Zeek/Bro which provides http2 decoder/analyzer☆31Updated last year
- ☆12Updated 2 years ago
- OSSEM Common Data Model☆55Updated 2 years ago
- ☆15Updated last year