weslambert's repositories
velociraptor-docker
Docker image for Velocidex Velociraptor
securityonion-velociraptor
Run Velociraptor on Security Onion
misp2elastalert
Convert MISP events to Elastalert rules
velociraptor-misp
Artifacts for integrating MISP with Velociraptor
APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
Cortex-Analyzers
Cortex Analyzers Repository
LinuxCatScale
Incident Response collection and processing scripts with automated reporting scripts
securityonion-n8n
Install n8n on Security Onion to assist with automating context gathering and response
timesketch
Collaborative forensic timeline analysis
beats
:tropical_fish: Beats - Lightweight shippers for Elasticsearch & Logstash
CyberChef-server
A server providing RESTful access to CyberChef
dockerfiles
Dockerfiles for the official Elastic Stack images
elastalert2
ElastAlert 2 is a continuation of the original yelp/elastalert project. Pull requests are appreciated!
JNDIExploit
A malicious LDAP server for JNDI injection attacks
py-idstools
idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
python-apps
Apps to be used for Shuffle automation
securityonion-elastic-misc
Misc scripts for Security Onion + Elastic Stack
Shuffle
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
strelka
Real-time, container-based file scanning at enterprise scale
velociraptor
Digging Deeper....
velociraptor-docs
Documentation site for Velociraptor
yamllint
A linter for YAML files.
zeek-oui
Add an OUI lookup to Bro IDS.
