- Chicago, Illinois USA
-
ixgbe-x540-bypass-linux-support Public
Forked from devcexx/ixgbe-x540-bypass-linux-supportSet of patches for supporting Intel(R) 10GbE PCI Express X540T2BP bypass functions on the Linux Kernel.
Shell UpdatedJun 30, 2024 -
sagan Public
Forked from quadrantsec/saganSagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather than network packets.
C GNU General Public License v2.0 UpdatedMay 28, 2024 -
suricata Public
Forked from vincentmli/suricataSuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
C GNU General Public License v2.0 UpdatedMar 21, 2024 -
vmtouch Public
Forked from ghuls/vmtouchPortable file system cache diagnostics and control
C Other UpdatedMar 2, 2024 -
elastic-detection-lab Public
Forked from chan2git/elastic-detection-labThis repository serves as a comprehensive recap and detailed write-up showcasing the successful completion and in-depth understanding of TCM Security's course: Detection Engineering for Beginners.
UpdatedNov 14, 2023 -
ansible-suricata Public
Forked from ait-testbed/atb-ansible-suricataAnsible Role that installs and configures suricata
Jinja GNU General Public License v3.0 UpdatedApr 20, 2023 -
beats Public
Forked from elastic/beats🐠 Beats - Lightweight shippers for Elasticsearch & Logstash
Go Other UpdatedApr 4, 2023 -
applookup Public
Forked from soc-partner/applookupPackage applookup for zeek
Zeek UpdatedMar 22, 2023 -
pcapdj Public
Forked from CIRCL/pcapdjpcapdj - dispatch pcap files
-
daemonloggerdaq Public
Forked from scavengineer/daemonloggerdaqDaemonlogger modified to use DAQ, primarily for listening on multiple interfaces
-
osquery-packs-and-dashboards Public
Forked from aarju/osquery-packs-and-dashboardsMIT License UpdatedJun 23, 2022 -
elastic-stack-monitoring-dashboard Public
Forked from jeffvestal/elastic-stack-monitoring-dashboardGNU General Public License v3.0 UpdatedApr 27, 2022 -
ansible-pull-example Public template
Forked from jktr/ansible-pull-exampleexample skeleton repo for setting up ansible-pull infrastructure
Python Creative Commons Zero v1.0 Universal UpdatedFeb 3, 2022 -
wec_pepped Public
Forked from ElasticSA/wec_peppedPep up your Windows Event Collector (WEC) for Windows Event Forwarding (WEF)
Roff GNU Affero General Public License v3.0 UpdatedAug 10, 2021 -
Elastic-Security Public
Forked from austinsonger/Elastic-SecurityRepo for Automations and other solutions for Elastic SIEM/Security.
Shell UpdatedJun 15, 2021 -
sagan-rules-1 Public
Forked from quadrantsec/sagan-rules -
-
-
ecs-mapping Public
Forked from transientvariable/ecs-mappingGrab bag of resources for mapping data to the Elastic Common Schema (ECS)
-
praeco Public
Forked from johnsusek/praecoElasticsearch alerting made simple.
-
incident-response-plan-template Public
Forked from counteractive/incident-response-plan-templateA concise, directive, specific, flexible, and free incident response plan template
-
xdr-elk-stack Public
Forked from dnoach/xdr-elk-stackLogstash config to ingest Cortex XDR alerts
-
platform Public
Forked from proofpoint/platformProofpoint Platform
-
zeek_globalwhitelist Public
Forked from rodrigokroll/zeek_globalwhitelistLogstretch public files
Zeek UpdatedMar 30, 2020 -
osProtect Public
Forked from clonesec/osProtectNetwork Security IDS/IPS Management and Reporting Interface
-
bzar Public
Forked from mitre-attack/bzarA set of Zeek scripts to detect ATT&CK techniques.
-
bro-json-to-tsv Public
Forked from Ucnt/bro-json-to-tsv(DEPRICATED) Bro JSON to TSV converter.
-
zeek_anomaly_detector Public
Forked from stratosphereips/zeek_anomaly_detectorAn anomaly detector for conn.log files in Zeek/Bro. Completely Automatic
-
PacketSorter Public
Forked from rickyzhang82/PacketSorterTCP packet sorter
-