Pinned Repositories
Azure_Sentinel
Azure Sentinel
cerebro
Cerebro Elasticsearch Management Interface
DFIR
Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
ELK-logstash-filter--Bro
ELK-Logstash-filter-for-IIS
Logstatsh fillter for IIS
ELK-logstash-filter-for-supper-timeline
Logstatsh filters for supper timeline the output of PSORT Log2timeline/plaso tool
ELK-Logstash-filter-MSExchange-Logging
ELK logstatsh Microsoft Exchnage Logging HttpProxy
Encryption
PE_parser
Parser for Windows portable executable files
Wiki-Helper
Cheat Sheet Project for Blue and Red team
Maboalenen's Repositories
Maboalenen/DFIR
Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
Maboalenen/PE_parser
Parser for Windows portable executable files
Maboalenen/ELK-logstash-filter-for-supper-timeline
Logstatsh filters for supper timeline the output of PSORT Log2timeline/plaso tool
Maboalenen/Azure_Sentinel
Azure Sentinel
Maboalenen/cerebro
Cerebro Elasticsearch Management Interface
Maboalenen/ELK-logstash-filter--Bro
Maboalenen/ELK-Logstash-filter-for-IIS
Logstatsh fillter for IIS
Maboalenen/ELK-Logstash-filter-MSExchange-Logging
ELK logstatsh Microsoft Exchnage Logging HttpProxy
Maboalenen/Encryption
Maboalenen/Wiki-Helper
Cheat Sheet Project for Blue and Red team
Maboalenen/logstash
logstash_filters
Maboalenen/sof-elk
Configuration files for the SOF-ELK VM, used in SANS FOR572