ccdcoe

ccdcoe's repositories

CDMCS

Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)

Language:Jupyter NotebookMIT98 20 4

Frankencoding

You're busted!

Providentia

Providentia is a tool to manage (mostly) virtualized infrastructure knowledge. Born out of necessity to build the world's largest live-fire cyber exercise - Locked Shields - it can also be used to organize infrastructure or smaller scale exercises. Essentially it is used as a front-end for Ansible inventory.

Language:RubyMIT16 40

frankenstack

Busted. With duct tape, spit and tears. Brought to you by beer.

Language:SaltStackMIT12 5 2

go-peek

Simple streaming pre-processor and enrichment tool for structured logs.

Language:GoMIT11 30

roboblue

Automating The Blue Team

Language:Python8 70

frankenSEC

Language:PythonGPL-3.05 3 1

xs-sigma-rules

Sigma rules transformed to our Frankenstack's liking.

NOASSERTION3 30

alert-visualizer

Display connected Suricata alerts over multiple networks. Powered by d3 and elasticsearch.

Language:JavaScriptMIT1 30

EVE

Events Visualization Environment

Language:Java1 30

vsphere-datascraper

Python VM data scraper using vSphere API

Language:PythonMIT100

xs16-empire

generate some "real bad" traffic

Language:Python1 20

zeeky

Language:BroMIT1 40

BMC

040

otta

Automated query engine for aol/moloch. Parse statistical data for known good queries, and publish to influxdb.

Language:HTMLApache-2.0030

smurfParty

Run elasticsearch aggregation query against moloch sessions indices and visualize resulting data as matrices per blue team

Language:PythonMIT030