Skip to content

Latest commit

 

History

History
 
 

NSM

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
ELK
ELK
 
 
INSTALL
INSTALL
 
 
MITRE&ATT
MITRE&ATT
 
 
Osquery
Osquery
 
 
conf
conf
 
 
docs
docs
 
 
profile
profile
 
 
sensor
sensor
 
 
silk
silk
 
 
README.md
README.md
 
 
README.org
README.org
 
 

README.md

Table of Contents

  1. Topology
  2. ELK materials
    1. Basic ELKSystem installation
      1. [Doc] Debian-GNU-Linux-Profiles/ELKwithbroIDdoc.mkd at master · hardenedlinux/Debian-GNU-Linux-Profiles
      2. [Install] Debian-GNU-Linux-Profiles/ELKINSTALL.sh at master · hardenedlinux/Debian-GNU-Linux-Profiles
      3. [Conf] Debian-GNU-Linux-Profiles/NSM/ELK/conf at master · hardenedlinux/Debian-GNU-Linux-Profiles
      4. [plugin] Debian-GNU-Linux-Profiles/NSM/ELK/plugin at master · hardenedlinux/Debian-GNU-Linux-Profiles
    2. Bro-script Repo
      1. hardenedlinux/hardenedlinux-bro-script
    3. Bro-Components
      1. Bro-osquery
      2. Pdns
      3. Debugging-bro-script
      4. Quickly bro-script-test-environment
    4. Osquery-koild
      1. Debian-GNU-Linux-Profiles/NSM/Osquery at master · hardenedlinux/Debian-GNU-Linux-Profiles
    5. Snort & suricata & Clamav
      1. [Install] Debian-GNU-Linux-Profiles/SensorINSTALL.sh at master · hardenedlinux/Debian-GNU-Linux-Profiles
      2. [Doc] Debian-GNU-Linux-Profiles/checklist.org at master · hardenedlinux/Debian-GNU-Linux-Profiles
      3. [Demo-rules] Debian-GNU-Linux-Profiles/NSM/sensor/suricata/rules at master · hardenedlinux/Debian-GNU-Linux-Profiles
    6. Silk
      1. [Doc] Debian-GNU-Linux-Profiles/SilkBasic.org at master · hardenedlinux/Debian-GNU-Linux-Profiles
      2. [Install] Debian-GNU-Linux-Profiles/SilkINSTALL.sh at master · hardenedlinux/Debian-GNU-Linux-Profiles
    7. Vast
      1. [Ref] VAST - Home
      2. [Install] Debian-GNU-Linux-Profiles/vast.sh at master · hardenedlinux/Debian-GNU-Linux-Profiles

Topology

img

ELK materials

Alice -> Bob: Authentication Request Bob –> Alice: Authentication Response

Basic ELKSystem installation

[Doc] Debian-GNU-Linux-Profiles/ELKwithbroIDdoc.mkd at master · hardenedlinux/Debian-GNU-Linux-Profiles

[Install] Debian-GNU-Linux-Profiles/ELKINSTALL.sh at master · hardenedlinux/Debian-GNU-Linux-Profiles

[Conf] Debian-GNU-Linux-Profiles/NSM/ELK/conf at master · hardenedlinux/Debian-GNU-Linux-Profiles

[plugin] Debian-GNU-Linux-Profiles/NSM/ELK/plugin at master · hardenedlinux/Debian-GNU-Linux-Profiles

Bro-script Repo

hardenedlinux/hardenedlinux-bro-script

Bro-Components

Bro-osquery

  1. [Install] Debian-GNU-Linux-Profiles/bro-osquery.sh at master · hardenedlinux/Debian-GNU-Linux-Profiles

Pdns

  1. [Install] Debian-GNU-Linux-Profiles/bro-pkg&pdns.sh at master · hardenedlinux/Debian-GNU-Linux-Profiles

Debugging-bro-script

  1. [Doc] Debian-GNU-Linux-Profiles/bro-debug.org at master · hardenedlinux/Debian-GNU-Linux-Profiles

Quickly bro-script-test-environment

  1. [Doc] Debian-GNU-Linux-Profiles/broscript.md at master · hardenedlinux/Debian-GNU-Linux-Profiles

Osquery-koild

Debian-GNU-Linux-Profiles/NSM/Osquery at master · hardenedlinux/Debian-GNU-Linux-Profiles

Snort & suricata & Clamav

[Install] Debian-GNU-Linux-Profiles/SensorINSTALL.sh at master · hardenedlinux/Debian-GNU-Linux-Profiles

[Doc] Debian-GNU-Linux-Profiles/checklist.org at master · hardenedlinux/Debian-GNU-Linux-Profiles

[Demo-rules] Debian-GNU-Linux-Profiles/NSM/sensor/suricata/rules at master · hardenedlinux/Debian-GNU-Linux-Profiles

Silk

[Doc] Debian-GNU-Linux-Profiles/SilkBasic.org at master · hardenedlinux/Debian-GNU-Linux-Profiles

[Install] Debian-GNU-Linux-Profiles/SilkINSTALL.sh at master · hardenedlinux/Debian-GNU-Linux-Profiles

Vast

[Ref] VAST - Home

[Install] Debian-GNU-Linux-Profiles/vast.sh at master · hardenedlinux/Debian-GNU-Linux-Profiles