zam89 / suricatalogparser
A simple log parser for Suricata log file (JSON)
☆8Updated last year
Related projects: ⓘ
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆34Updated 2 years ago
- Pure Honeypots with an automated bash script☆19Updated 3 years ago
- Snapshot, patch, health-check, and potentially roll-back Windows VMs☆31Updated 6 years ago
- Prototype system to monitor BGP routes and alert when anomalies are identified☆14Updated 5 years ago
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 7 years ago
- An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk☆22Updated 6 years ago
- A Yara Lua output script for Suricata☆19Updated 5 years ago
- ProcessBouncer is a simple but effective tool for blocking malware with a process-based approach. With a little fine-tuning this allows t…☆23Updated 3 years ago
- Cisco AMP threat hunting scripts☆14Updated 2 years ago
- damn simple honey pot☆15Updated 8 years ago
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.☆25Updated 7 years ago
- Public Github Pages for Cisco☆15Updated 5 years ago
- Triage automation for suspect URLs☆13Updated 5 years ago
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆12Updated 4 years ago
- A collection of tools adversaries commonly use in an attack.☆14Updated 3 months ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆40Updated 4 years ago
- A collection of open source and commercial tools that aid in red team operations.☆10Updated 5 years ago
- THOR MITRE ATT&CK Framework Coverage☆24Updated 4 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…☆12Updated 7 years ago
- This is a simple Python script that connects to a MISP instance and retrieves attributes of specific types (such as IP addresses, URLs, a…☆15Updated last year
- hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hass…☆54Updated this week
- A quick way to perform a bulk whois query. Utilizes Team Cymru's service. Requires netcat.☆11Updated 12 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- PowerShell Memory Pulling script☆19Updated 9 years ago
- ☆33Updated 6 years ago
- ☆12Updated 4 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- SMTP honeypot written in Golang☆27Updated 8 years ago
- Web interface for monitoring and interacting with Netflow data stored in Silk repositories.☆13Updated 5 years ago
- Globally distributed honeypots and HoneyNets IOCs and file reversing☆16Updated 4 months ago