outflanknl/RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

PythonBSD-3-Clause

Issues

Support for Opensearch
#312 opened 4 months ago by rkbennett
0
RedELK not compatibel with CS 4.10
#313 opened 2 months ago by alcastronic
2
BounceBack redirector support
#306 opened a year ago by D00Movenok
1
MsSQL setup trouble
#307 opened a year ago by hvprvtr
0
Integration of Bloodhound Community Edition
#300 opened a year ago by alcastronic
9
Nothing being indexed into implantsdb
#299 opened a year ago by RossLopez
2
Support for Sliver C2
#220 opened 3 years ago by hypnoticpattern
3
Fix some Logstash warnings
#237 opened a year ago by MarcOverIP
2
Add containers to GHCR / Review build pipeline
#295 opened 2 years ago by fastlorenzo
1
Glibc filebeat errors
#263 opened 2 years ago by MarcOverIP
1
Remove config files from source control
#283 opened 2 years ago by fastlorenzo
3
All alarms should report project_name
#278 opened 2 years ago by MarcOverIP
2
Add mising modules in config.py
#268 opened 2 years ago by fastlorenzo
0
Check and clean-up ruby scripts
#271 opened 2 years ago by MarcOverIP
0
VT quota management
#287 opened 2 years ago by MarcOverIP
1
Cobalt Strike enrichment stacktrace errors
#291 opened 2 years ago by MarcOverIP
0
quick dump of small notes and issues
#290 opened 2 years ago by MarcOverIP
0
ES document conflicterrors
#288 opened 2 years ago by MarcOverIP
0
Hybrid Analysis - error handling around max API hits
#285 opened 2 years ago by MarcOverIP
1
Add support for domain lists (similar to IP lists)
#270 opened 2 years ago by fastlorenzo
1
RedWarden redirector support
#193 opened 3 years ago by MarcOverIP
6
Hybrid Anlaysis - SSL handshake failure
#286 opened 2 years ago by MarcOverIP
1
Check if all modules in config.py
#272 opened 2 years ago by MarcOverIP
1
Greynoise error
#279 opened 2 years ago by MarcOverIP
0
Check for consistent usage of c2.log.type field
#273 opened 2 years ago by MarcOverIP
1
Issue with dashboards missing "keyword"
#266 opened 2 years ago by oribit
2
export_kibana_config script not parsing Kibana settings?
#221 opened 3 years ago by MarcOverIP
1
Bluecheck content parsing and alarm
#228 opened 3 years ago by MarcOverIP
1
Implant.log_file not showing c2logs
#264 opened 3 years ago by m7x
1
Help with install
#256 opened 3 years ago by pentest01
4
Performance issue with rsync on C2server
#259 opened 3 years ago by sunnyneo
1
Help with install
#257 opened 3 years ago by pentest01
1
Apache/nginx traffic not being parsed
#254 opened 3 years ago by carlneuhaus
2
Logstash Stage1 Download filter parse failure
#229 opened 3 years ago by MarcOverIP
0
Alarms should include source.cdn.ip instead of source.nat.ip
#242 opened 3 years ago by MarcOverIP
1
Kibana app upgrade to 7.16.
#222 opened 3 years ago by MarcOverIP
2
HA false positive due to Cloudflare error
#234 opened 3 years ago by MarcOverIP
1
rsync performance
#243 opened 3 years ago by jmoosdijk
0
Logstash config files docker mounted by default
#224 opened 3 years ago by MarcOverIP
1
No Matching Indices - Debian
#232 opened 3 years ago by PhoenixNP
5
redelk-www dir non existing
#230 opened 3 years ago by MarcOverIP
0
Upgrade Elastic to latest 7.16 due to log4shell
#217 opened 3 years ago by fastlorenzo
8
Support for Nuages C2
#194 opened 3 years ago by fastlorenzo
2
Support for Empire C2
#203 opened 3 years ago by Cx01N
2
python scripts should do sanity checks before running
#197 opened 3 years ago by MarcOverIP
0
python script for greynosie throws error
#195 opened 3 years ago by MarcOverIP
0
Erroneous Password Generation
#204 opened 3 years ago by FuzzySecurity
1
rsync command in getremotelogs.sh pulls from wrong directory
#199 opened 3 years ago by 78454674
3
python script alarm_filehash throws error on VT data
#196 opened 3 years ago by MarcOverIP
0
Generic solution to multiple C2 support
#192 opened 3 years ago by MarcOverIP
1