Pinned Repositories
DinoSOARLab
Security Onion + Automation + Response Lab including n8n and Velociraptor
misp2elastalert
Convert MISP events to Elastalert rules
securityonion-limacharlie
Send logs from LimaCharlie to Security Onion
securityonion-misp
securityonion-sigma
securityonion-strelka
securityonion-velociraptor
Run Velociraptor on Security Onion
velociraptor-docker
Docker image for Velocidex Velociraptor
velociraptor-misp
Artifacts for integrating MISP with Velociraptor
velocistack
weslambert's Repositories
weslambert/velociraptor-docker
Docker image for Velocidex Velociraptor
weslambert/DinoSOARLab
Security Onion + Automation + Response Lab including n8n and Velociraptor
weslambert/velocistack
weslambert/securityonion-velociraptor
Run Velociraptor on Security Onion
weslambert/securityonion-sublime
Ingest Sublime email alerts into Security Onion
weslambert/SOCtopus
weslambert/securityonion-rita
weslambert/Audit
Collection of Audit and Compliance related VQL artifacts
weslambert/jamfprotect
A repository for open-source resources created for use with or alongside Jamf Protect.
weslambert/python-apps
Apps to be used for Shuffle automation
weslambert/securityonion-n8n
Install n8n on Security Onion to assist with automating context gathering and response
weslambert/Tools
Distribute third party tools for use with Velociraptor
weslambert/velociraptor
Digging Deeper....
weslambert/aftermath
Aftermath is a free macOS IR framework
weslambert/ChopChopGo
Rapidly Search and Hunt through Linux Forensics Artifacts
weslambert/dockerfiles
Dockerfiles for the official Elastic Stack images
weslambert/elastalert2
ElastAlert 2 is a continuation of the original yelp/elastalert project. Pull requests are appreciated!
weslambert/elasticsearch
Free and Open, Distributed, RESTful Search Engine
weslambert/go-sigma-rule-engine
Golang library that implements a sigma log rule parser and match engine.
weslambert/integrations
Elastic Integrations
weslambert/iris-web
Collaborative Incident Response platform
weslambert/rpcfirewall
weslambert/Shuffle
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
weslambert/strelka-ui
Strelka Web UI for File Submission and Analysis
weslambert/velociraptor-docs
Documentation site for Velociraptor
weslambert/WonkaVision
weslambert/yamllint
A linter for YAML files.
weslambert/yara-forge
Automated YARA Rule Standardization and Quality Assurance Tool
weslambert/yara-forge-docker
Run YARA Forge in a Docker container
weslambert/zeek-oui
Add an OUI lookup to Bro IDS.