BeaKer
Network analyzer
Aggregates Microsoft Sysmon network events with Elasticsearch and Kibana for threat hunting analysis
Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana
286 stars
19 watching
40 forks
Language: Shell
last commit: about 2 months ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 toni-moreno/snmpcollector | A tool to collect and store network device data in a time-series format | 289 |
| activecm/espy | A system for collecting and processing network connection logs from Microsoft Sysmon in Elastic ECS format | 67 |
 jpcertcc/sysmonsearch | Analyzes Sysmon event logs to detect suspicious activity and visualize process and network correlations. | 417 |
 nshalabi/sysmontools | Utilities for analyzing and visualizing Windows event logs from Sysmon, helping users track and monitor system activity. | 1,488 |
| activecm/rita | A framework for detecting malicious communication patterns in network traffic by analyzing Zeek logs. | 199 |
 akestoridis/zigator | Analyzes and manipulates data from Zigbee and Thread networks to identify security vulnerabilities and simulate attacks. | 29 |
 kieranrcampbell/embeddr | Analyzes single-cell RNA-seq data using pseudotemporal ordering and clustering | 12 |
 dlumbrer/kbn_network | A plugin that visualizes networks of connected data points in Kibana dashboards. | 368 |
 zensqlmonitor/influxdb-sqlserver | Collects Microsoft SQL Server metrics and sends them to InfluxDB for visualization with Grafana | 72 |
 bbangert/beaker | A caching and session management library for web applications. | 523 |
 uniba-dsg/bpmnspector | Tools for static analysis of BPMN 2.0 process models to ensure compliance with standards | 12 |
 sentinl/sentinl | An extension of Siren Investigate and Kibana with advanced monitoring, notification, and reporting capabilities for Elasticsearch data | 1,332 |
 abrander/agento | Collects near real-time metrics from Linux hosts using InfluxDB as the backend. | 28 |
 sambaranban/fscnmf | Provides code and data support for FSCNMF, a network representation technique. | 2 |
 albermax/innvestigate | A toolbox to help understand neural networks' predictions by providing different analysis methods and a common interface. | 1,265 |