BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.
-
Updated
Apr 12, 2020
#
security-onion
Here are 10 public repositories matching this topic...
Collection of PatternDB files to parse Ubiquiti Unifi events into Security Onion's Syslog-NG and ELSA
-
Updated
Apr 24, 2017
This project aims to enhance intrusion detection using Security Onion by integrating machine learning models for improved alert prioritization.
python security data-science machine-learning jupyter-notebook cybersecurity network-security intrusion-detection-system security-onion
-
Updated
Sep 25, 2024 - Jupyter Notebook
Repository for configuration files, scripts, code, and other information on the Watchtower Stack
html elasticsearch grafana prometheus suricata ids json-configuration lucene bash-script qemu-kvm yaml-configuration zeek opensearch security-onion wazuh promql endpoint-monitoring
-
Updated
Jan 6, 2025 - HTML
Test your IDS with a simple python2.7 SCAPY tool.
-
Updated
Apr 20, 2018 - Python
Security Onion Packet Capture Download scripts
-
Updated
Nov 10, 2019 - Python
Presenting a guide and systematic methodology for implementing securityonion / ELK elastic search stack. Checklists, Samples, Tips, and Tricks
-
Updated
Dec 29, 2020
YARA signature | YARA rule for Detecting Voldemort Malware
splunk malware threat-hunting cuckoo yara security-onion soar edr voldemort yara-rule voldemort-malware
-
Updated
Sep 9, 2024 - YARA
Standalone Security Onion Setup + Network Simulation using Two Devices
-
Updated
Jul 6, 2024
Improve this page
Add a description, image, and links to the security-onion topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the security-onion topic, visit your repo's landing page and select "manage topics."