Stars
Stand up a simple Elastic container with Kibana, Fleet, and the Detection Engine
Documentation and scripts to properly enable Windows event logs.
Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
Sample evtx files to use for testing hayabusa detection rules
Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
The Elastic stack (ELK) powered by Docker and Compose.