Pinned Repositories
CDMCS
Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
exfil-testbench
Vagrant lab environment for data exfiltration research paper.
go-sigma-rule-engine
Golang library that implements a sigma log rule parser and match engine.
pikksilm
Look into EDR events from network
SagittariuSEC
SEC ruleset for common exploit patterns and my master thesis
suricata-lua-scripts
Extending the meerkat.
tickscripts
Repository for kapacitor TICK scripts. For alerting and anomaly detection.
gophercap
Accurate, modular, scalable PCAP manipulation tool written in Go.
suricata-analytics
markuskont's Repositories
markuskont/go-sigma-rule-engine
Golang library that implements a sigma log rule parser and match engine.
markuskont/pikksilm
Look into EDR events from network
markuskont/CDMCS
Cyber Defence Monitoring Course Suite :: TICK, Suricata, Moloch
markuskont/gophercap
Accurate, modular, scalable PCAP manipulation tool written in Go.
markuskont/sigma
Generic Signature Format for SIEM Systems
markuskont/suricata-analytics-1
markuskont/Talsec-meetup
"Slides" for 2019.10.10 meetup
markuskont/TensorFlow-Examples
TensorFlow Tutorial and Examples for Beginners (support TF v1 & v2)
markuskont/ansible-playbooks
Ansible playbooks for spinning up various things.
markuskont/bro-community-id
Zeek support for "community ID" flow hashing.
markuskont/bspwm
A tiling window manager based on binary space partitioning
markuskont/clusters
Data structs and algorithms for clustering data observations and basic computations in n-dimensional spaces
markuskont/datamodels
Data structures and wrappers in Golang
markuskont/dockerfiles
Docker build files for tools that I use.
markuskont/dwm
Dynamic window manager
markuskont/frankenstack
Busted. With duct tape, spit and tears. Brought to you by beer.
markuskont/go-dispatch
Tiny frame for spawning concurrent workers in golang.
markuskont/go-peek
Simple streaming pre-processor and enrichment tool for structured logs. My personal development repo.
markuskont/gommunityid
Go implementation of the Community ID flow hashing standard
markuskont/gonids
gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/
markuskont/homoglyphs
Homoglyphs: get similar letters, convert to ASCII, detect possible languages and UTF-8 group.
markuskont/kmeans
k-means clustering algorithm implementation written in Go
markuskont/moloch
My personal fork of moloch for experimentation.
markuskont/PythonDataScienceHandbook
Python Data Science Handbook: full text in Jupyter Notebooks
markuskont/rice
markuskont/SELKS
A Suricata based IDS/IPS distro
markuskont/suricata
Suricata git repository maintained by the OISF
markuskont/suricata-update
The tool for updating your Suricata rules.
markuskont/typogenerator
Golang string typosquatting generator
markuskont/xs-sigma-rules
Sigma rules transformed to our Frankenstack's liking.