bash_cata

Alert processor

Automates processing of network alerts from Suricata and adds IP addresses to MikroTik address lists.

A simple script that processes the generated Suricata eve-log in real time.

GitHub

9 stars
1 watching
1 forks
Language: Shell
last commit: 9 months ago
Linked from 1 awesome list


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
pevma/massdeploysuricata Automates the deployment and updating of Suricata network intrusion detection system software. 9
stamusnetworks/kts6 Templates for Kibana 6 to visualize and analyze Suricata threat intelligence data 24
sebdraven/iocmite Automates importing threat intelligence data into Suricata's surveillance system 37
jasonish/experimental-suricata-training A shell-based training environment for Suricata intrusion detection and analysis 6
withsecurelabs/linuxcatscale Automates incident response collection and processing on Linux hosts. 274
dcso/fever A fast and extensible system for processing JSON events from security monitoring tools 51
stamusnetworks/kts Customizable dashboards and visualizations for security monitoring and analysis using Suricata IDPS and the ELK stack. 33
eschava/psmqtt A utility that collects and reports system metrics to an MQTT broker. 159
vp777/metahttp Automates scanning of HTTP resources in a target network using XML External Entity (XXE) attacks 37
center-sun/suricata-kafka-output Provides a Suricata output to Kafka using the Eve plugin 14
ditekshen/detection Detects malicious network and host activity using Yara, Snort, and ClamAV signatures. 213
jasonish/docker-suricata A Docker image for running Suricata, a network security system 269
certego/pcapmonkey An analysis tool for packet capture files using Suricata and Zeek 145
stamusnetworks/suricata-language-server An implementation of the Language Server Protocol for Suricata signatures, adding syntax check and auto-completion to editors. 65
jandelgado/rabtap A tool for inspecting and manipulating RabbitMQ message flows 265