zam89 / suricatalogparserLinks
A simple log parser for Suricata log file (JSON)
☆8Updated 2 years ago
Alternatives and similar repositories for suricatalogparser
Users that are interested in suricatalogparser are comparing it to the libraries listed below
Sorting:
- Prototype system to monitor BGP routes and alert when anomalies are identified☆15Updated 6 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- Pure Honeypots with an automated bash script☆20Updated 3 years ago
- A Yara Lua output script for Suricata☆20Updated 6 years ago
- ProcessBouncer is a simple but effective tool for blocking malware with a process-based approach. With a little fine-tuning this allows t…☆24Updated 4 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- Easy way to create a MISP event related to a Phishing page☆17Updated 2 years ago
- Triage automation for suspect URLs☆13Updated 5 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 6 years ago
- THOR MITRE ATT&CK Framework Coverage☆24Updated 5 years ago
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆24Updated 6 years ago
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 8 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 5 years ago
- Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.☆17Updated 4 years ago
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆12Updated 5 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- Yara rules for malicious javascript files from public repositories or written by me.☆13Updated 3 years ago
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.☆24Updated 8 years ago
- ☆13Updated 5 years ago
- An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.☆16Updated 3 years ago
- An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk☆23Updated 6 years ago
- Phactive - Monitoring an Environment with Nmap red teaming☆13Updated 6 years ago
- Use DNS to hunt for threats including DGAs☆15Updated 9 years ago
- This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes☆21Updated 4 years ago
- ☆22Updated 4 years ago
- Public Github Pages for Cisco☆14Updated 6 years ago
- PowerShell Memory Pulling script☆19Updated 10 years ago
- PowerShell version of Fail2Ban☆12Updated 5 years ago
- Snort_rules detection bad actors.☆28Updated 10 months ago