Logstash configuration files for analyzing various types of logs
☆24Dec 9, 2016Updated 9 years ago
Alternatives and similar repositories for logstash-dfir
Users that are interested in logstash-dfir are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆15Aug 11, 2019Updated 6 years ago
- A web interface for interacting with your Bro IDS logs.☆85Jun 10, 2021Updated 4 years ago
- Scripts for Bro IDS and ELK Stack☆56Sep 2, 2015Updated 10 years ago
- Logging plugin to bro to send logs to a Kafka broker☆20Nov 29, 2017Updated 8 years ago
- Python script that gets IOC from MISP and converts it into BRO intel files.☆13Apr 17, 2016Updated 10 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆50Feb 11, 2014Updated 12 years ago
- Powershell Functions to interact with TheHive-Project☆11Jun 27, 2019Updated 6 years ago
- ☆17Mar 1, 2018Updated 8 years ago
- Full Packet Capture for the Masses☆14Sep 13, 2018Updated 7 years ago
- Generates visualizations from the output of flow tools such as SiLK.☆33Dec 8, 2016Updated 9 years ago
- Help summarize a PCAP file☆33Dec 27, 2011Updated 14 years ago
- Tools and Binaries to use with KAPE☆13Aug 13, 2019Updated 6 years ago
- ☆12Feb 16, 2023Updated 3 years ago
- Embeddable user management library and authentication provider (user registration, activation mails, password authentication)☆18Dec 12, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Feed Generator for MISP☆19Nov 2, 2022Updated 3 years ago
- Technical add-on to ingest json formatted volatility memory analysis plugin outputs☆13May 21, 2018Updated 8 years ago
- A Bro package to identify connections that are bursting (lots of data and transferring quickly).☆13Oct 15, 2020Updated 5 years ago
- Lambda handler for Yelp's ElastAlert☆14Feb 1, 2019Updated 7 years ago
- module for osquery to load Bro logs into tables☆28Apr 28, 2015Updated 11 years ago
- AWS Summit Dev Labs: Build a modern serverless web application in minutes using the AWS Amplify Framework☆77Dec 31, 2019Updated 6 years ago
- (OBSOLETE) Plugins for Bro☆53Sep 13, 2017Updated 8 years ago
- ☆15Aug 20, 2019Updated 6 years ago
- Script for generating Bro intel files from pdf or html reports☆76Dec 7, 2015Updated 10 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Extensions for Zeek's Intelligence Framework.☆11Mar 1, 2022Updated 4 years ago
- bro on debian with elasticsearch support☆24Mar 27, 2017Updated 9 years ago
- SQL, IIS, Oh My...☆21Feb 24, 2025Updated last year
- Collection of AWS helper scripts.☆13Jan 15, 2018Updated 8 years ago
- Packer Configuration to create Windows boxes☆14Dec 21, 2018Updated 7 years ago
- Deploy Kolide's Fleet into AWS using Terraform.☆16Apr 18, 2018Updated 8 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Jul 12, 2021Updated 4 years ago
- SPL to lucene translator☆15Jan 24, 2015Updated 11 years ago
- Bulk import of resources into Terraform☆23Feb 14, 2019Updated 7 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE☆33May 25, 2024Updated 2 years ago
- Puppet module to install New Relic Server Monitoring and PHP agents☆25Jun 4, 2024Updated last year
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Oct 12, 2018Updated 7 years ago
- Plugin providing AF_XDP support for Bro.☆15May 10, 2021Updated 5 years ago
- Expert Investigation Guides☆50Mar 18, 2021Updated 5 years ago
- ☆11Mar 9, 2018Updated 8 years ago
- **NOTE**: This is outdated and no longer maintained. There's a new version at https://github.com/zeek/spicy.☆41Aug 22, 2017Updated 8 years ago