bash_cata
Alert processor
Automates processing of network alerts from Suricata and adds IP addresses to MikroTik address lists.
A simple script that processes the generated Suricata eve-log in real time.
9 stars
1 watching
1 forks
Language: Shell
last commit: 9 months ago
Linked from 1 awesome list
Related projects:
Repository | Description | Stars |
---|---|---|
pevma/massdeploysuricata | Automates the deployment and updating of Suricata network intrusion detection system software. | 9 |
stamusnetworks/kts6 | Templates for Kibana 6 to visualize and analyze Suricata threat intelligence data | 24 |
sebdraven/iocmite | Automates importing threat intelligence data into Suricata's surveillance system | 37 |
jasonish/experimental-suricata-training | A shell-based training environment for Suricata intrusion detection and analysis | 6 |
withsecurelabs/linuxcatscale | Automates incident response collection and processing on Linux hosts. | 274 |
dcso/fever | A fast and extensible system for processing JSON events from security monitoring tools | 51 |
stamusnetworks/kts | Customizable dashboards and visualizations for security monitoring and analysis using Suricata IDPS and the ELK stack. | 33 |
eschava/psmqtt | A utility that collects and reports system metrics to an MQTT broker. | 159 |
vp777/metahttp | Automates scanning of HTTP resources in a target network using XML External Entity (XXE) attacks | 37 |
center-sun/suricata-kafka-output | Provides a Suricata output to Kafka using the Eve plugin | 14 |
ditekshen/detection | Detects malicious network and host activity using Yara, Snort, and ClamAV signatures. | 213 |
jasonish/docker-suricata | A Docker image for running Suricata, a network security system | 269 |
certego/pcapmonkey | An analysis tool for packet capture files using Suricata and Zeek | 145 |
stamusnetworks/suricata-language-server | An implementation of the Language Server Protocol for Suricata signatures, adding syntax check and auto-completion to editors. | 65 |
jandelgado/rabtap | A tool for inspecting and manipulating RabbitMQ message flows | 265 |