wesleyraptor's Stars
osquery/osquery
SQL powered operating system instrumentation, monitoring, and analytics.
Gallopsled/pwntools
CTF framework and exploit development library
Yelp/elastalert
Easy & Flexible Alerting With ElasticSearch
uber-go/fx
A dependency injection based application framework for Go.
lmenezes/cerebro
clong/DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
airbnb/streamalert
StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.
noirbizarre/flask-restplus
Fully featured framework for fast, easy and documented API development with Flask
elastic/rally
Macrobenchmarking framework for Elasticsearch
slackhq/go-audit
go-audit is an alternative to the auditd daemon that ships with many distros
philhagen/sof-elk
Configuration files for the SOF-ELK VM
HASecuritySolutions/VulnWhisperer
Create actionable data from your Vulnerability Scans
a2o/snoopy
Snoopy Command Logger is a small library that logs all program executions on your Linux/BSD system.
salesforce/jarm
kolide/fleet
A flexible control server for osquery fleets
netevert/sentinel-attack
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
elastic/ecs
Elastic Common Schema
palantir/osquery-configuration
A repository for using osquery for incident detection and response
teoseller/osquery-attck
Mapping the MITRE ATT&CK Matrix with Osquery
FalconForceTeam/FalconHound
FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is designed to be used in conjunction with a SIEM or other log aggregation tool.
elastic/eland
Python Client and Toolkit for DataFrames, Big Data, Machine Learning and ETL in Elasticsearch
mwielgoszewski/doorman
an osquery fleet manager
SuperCowPowers/zat
Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark
jmpsec/osctrl
Fast and efficient osquery management
onesuper/pandasticsearch
An Elasticsearch client exposing DataFrame API
endgameinc/eql
FoxIO-LLC/LogSlash
A standard for reducing log volume without sacrificing analytical capability
openbsm/openbsm
OpenBSM open audit implementation
HASecuritySolutions/LogCampaign
Provides detection capabilities and log conversion to evtx or syslog capabilities
kpolley/RELK
RELK -- The Research Elastic Stack (Kafka, Beats, Zookeeper, Logstash, ElasticSearch, Kibana, Spark, & Jupyter -- All in Docker)