xeraa / auditbeat-in-actionLinks
Demo for Elastic's Auditbeat and SIEM
☆24Updated 4 years ago
Alternatives and similar repositories for auditbeat-in-action
Users that are interested in auditbeat-in-action are comparing it to the libraries listed below
Sorting:
- SIAC is an enterprise SIEM built on open-source technology.☆115Updated 6 years ago
- Expandable Defensive Cyber Operations Platform☆43Updated 2 years ago
- bro on debian with elasticsearch support☆24Updated 8 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated 3 weeks ago
- This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2☆14Updated 4 years ago
- Flame - Send vulnerabilities reports to SIEM☆15Updated 9 years ago
- Scripts and integrations for OSSEC☆41Updated 9 years ago
- This is the official main repository for the Assimilation project☆51Updated last year
- Zeek package for tracking long connections to report them before they have completed.☆30Updated last month
- Kibana 4 Templates for Suricata IDPS☆33Updated 9 years ago
- ☆47Updated 10 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago
- MISP - Ansible installation script☆22Updated 6 years ago
- Docker files for Security Onion☆42Updated 4 years ago
- Build Automated Machine Images for MISP☆28Updated 2 years ago
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆48Updated 2 years ago
- Offensive Infrastructure with Modern Technologies☆91Updated 4 years ago
- A RESTful API frontend for Stenographer☆54Updated 2 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Dashboards and loader for ROCK NSM dashboards☆49Updated 2 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆88Updated 6 years ago
- ☆11Updated 7 years ago
- ☆20Updated 5 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collection☆34Updated 4 years ago
- Docker container of SANS Investigative Forensic Toolkit (SIFT) Workstation Version 3☆11Updated 8 years ago
- A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.☆31Updated 7 years ago
- Reverse shell container for k8s deployments☆49Updated 5 years ago
- Collection of Auditd Examples and Presentations☆84Updated 4 years ago
- A lightweight tool to score network traffic and flag anomalies☆123Updated last year
- Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…☆16Updated 4 years ago