BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.
-
Updated
Apr 12, 2020
BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.
Collection of PatternDB files to parse Ubiquiti Unifi events into Security Onion's Syslog-NG and ELSA
Repository for configuration files, scripts, code, and other information on the Watchtower Stack
Security Onion Packet Capture Download scripts
Test your IDS with a simple python2.7 SCAPY tool.
Presenting a guide and systematic methodology for implementing securityonion / ELK elastic search stack. Checklists, Samples, Tips, and Tricks
YARA signature | YARA rule for Detecting Voldemort Malware
Standalone Security Onion Setup + Network Simulation using Two Devices
Add a description, image, and links to the security-onion topic page so that developers can more easily learn about it.
To associate your repository with the security-onion topic, visit your repo's landing page and select "manage topics."