weslambert

Principal Engineer at Security Onion Solutions

Security Onion Solutions LLCAugusta, GA

Pinned Repositories

DinoSOARLab
Security Onion + Automation + Response Lab including n8n and Velociraptor
Language:Shell98 7 1813
misp2elastalert
Convert MISP events to Elastalert rules
Language:Shell11 2 00
securityonion-limacharlie
Send logs from LimaCharlie to Security Onion
7 5 03
securityonion-misp
Language:Shell34 10 86
securityonion-sigma
8 2 00
securityonion-strelka
Language:YARA13 4 23
securityonion-velociraptor
Run Velociraptor on Security Onion
Language:SaltStack33 5 136
velociraptor-docker
Docker image for Velocidex Velociraptor
Language:Shell102 7 1635
velociraptor-misp
Artifacts for integrating MISP with Velociraptor
7 3 01
velocistack
Language:JavaScript45 5 1412

weslambert's Repositories

weslambert/velociraptor-docker
Docker image for Velocidex Velociraptor
Language:Shell102 7 1635
weslambert/DinoSOARLab
Security Onion + Automation + Response Lab including n8n and Velociraptor
Language:Shell98 7 1813
weslambert/velocistack
Language:JavaScript45 5 1412
weslambert/securityonion-velociraptor
Run Velociraptor on Security Onion
Language:SaltStack33 5 136
weslambert/securityonion-sublime
Ingest Sublime email alerts into Security Onion
Language:Python6 2 21
weslambert/SOCtopus
Language:Python5 3 24
weslambert/securityonion-rita
Language:Shell4 3 21
weslambert/Audit
Collection of Audit and Compliance related VQL artifacts
Language:Go1 0 0
weslambert/jamfprotect
A repository for open-source resources created for use with or alongside Jamf Protect.
Language:Shell1 1 0
weslambert/python-apps
Apps to be used for Shuffle automation
Language:Python1 1 0
weslambert/securityonion-n8n
Install n8n on Security Onion to assist with automating context gathering and response
Language:Shell1 2 2
weslambert/Tools
Distribute third party tools for use with Velociraptor
1 1 0
weslambert/velociraptor
Digging Deeper....
Language:Go1 0 0
weslambert/aftermath
Aftermath is a free macOS IR framework
Language:Swift1 0
weslambert/ChopChopGo
Rapidly Search and Hunt through Linux Forensics Artifacts
Language:Go0 0
weslambert/dockerfiles
Dockerfiles for the official Elastic Stack images
Language:Shell1 0
weslambert/elastalert2
ElastAlert 2 is a continuation of the original yelp/elastalert project. Pull requests are appreciated!
Language:Python1 0
weslambert/elasticsearch
Free and Open, Distributed, RESTful Search Engine
Language:Java1 0
weslambert/go-sigma-rule-engine
Golang library that implements a sigma log rule parser and match engine.
Language:Go0 0
weslambert/integrations
Elastic Integrations
Language:Handlebars
weslambert/iris-web
Collaborative Incident Response platform
Language:JavaScript0 0
weslambert/rpcfirewall
Language:C++1 0
weslambert/Shuffle
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
Language:JavaScript1 0
weslambert/strelka-ui
Strelka Web UI for File Submission and Analysis
Language:JavaScript0 0
weslambert/velociraptor-docs
Documentation site for Velociraptor
Language:HTML1 0
weslambert/WonkaVision
Language:C#1 0
weslambert/yamllint
A linter for YAML files.
Language:Python1 0
weslambert/yara-forge
Automated YARA Rule Standardization and Quality Assurance Tool
Language:Python
weslambert/yara-forge-docker
Run YARA Forge in a Docker container
Language:Dockerfile1
weslambert/zeek-oui
Add an OUI lookup to Bro IDS.
Language:Python1 0