zam89 / suricatalogparser
A simple log parser for Suricata log file (JSON)
☆8Updated 2 years ago
Alternatives and similar repositories for suricatalogparser:
Users that are interested in suricatalogparser are comparing it to the libraries listed below
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆34Updated 3 years ago
- Pure Honeypots with an automated bash script☆20Updated 3 years ago
- This is a simple Python script that connects to a MISP instance and retrieves attributes of specific types (such as IP addresses, URLs, a…☆16Updated 2 years ago
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆24Updated 6 years ago
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆12Updated 4 years ago
- Prototype system to monitor BGP routes and alert when anomalies are identified☆14Updated 6 years ago
- Phactive - Monitoring an Environment with Nmap red teaming☆13Updated 5 years ago
- Snort_rules detection bad actors.☆28Updated 7 months ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…☆12Updated 7 years ago
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.☆24Updated 8 years ago
- A collection of tools adversaries commonly use in an attack.☆14Updated 4 months ago
- Declare and keep up a rogue default-gateway in Cisco's HSRP default configuration☆18Updated 7 years ago
- ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)☆45Updated 3 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- Brute force password selection for EAP-MD5 authentication exchanges☆22Updated 7 years ago
- Mattermost - Shodan Slash command☆31Updated 8 years ago
- Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner☆43Updated 3 years ago
- ☆14Updated 4 years ago
- Triage automation for suspect URLs☆13Updated 5 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- ☆28Updated 7 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- Free and open cyber-security auditing tool with collective intelligence☆21Updated 5 years ago
- ☆33Updated 2 months ago
- ☆14Updated 6 years ago
- Collection of Suricata rule sets that I use modified to my environments.☆39Updated 4 years ago
- Proof-of-concept for phishing intelligence in Elastic☆15Updated 5 years ago
- Gunslinger is used to hunt for Magecart sites using URLScan's API☆31Updated 3 years ago
- Generic Signature Format for SIEM Systems☆14Updated 3 years ago
- Public Github Pages for Cisco☆14Updated 6 years ago