weslambert's repositories
misp2elastalert
Convert MISP events to Elastalert rules
velociraptor-misp
Artifacts for integrating MISP with Velociraptor
Cortex-Analyzers
Cortex Analyzers Repository
APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
LinuxCatScale
Incident Response collection and processing scripts with automated reporting scripts
timesketch
Collaborative forensic timeline analysis
velociraptor-ecs
ECS Mappings for Velociraptor Artifacts
CortexDocs
Documentation of Cortex
CyberChef-server
A server providing RESTful access to CyberChef
dockerfiles
Dockerfiles for the official Elastic Stack images
elastalert
Easy & Flexible Alerting With ElasticSearch
JNDIExploit
A malicious LDAP server for JNDI injection attacks
py-idstools
idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
securityonion-elastic
Security Onion Elastic Stack
securityonion-elastic-misc
Misc scripts for Security Onion + Elastic Stack
TheHiveDocs
Documentation of TheHive