|10 days ago||5 days ago|
|GNU General Public License v3.0 only||BSD 3-clause "New" or "Revised" License|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
dsiem: Security event correlation engine for ELK stack
1 project | reddit.com/r/purpleteamsec | 3 Nov 2021
Awesome Penetration Testing
124 projects | dev.to | 6 Oct 2021
RedELK - Track and alarm about Blue Team activities while providing better usability in long term offensive operations.
outflanknl/RedELK - Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
1 project | reddit.com/r/GithubSecurityTools | 30 Sep 2021
Documentation / Logging - what are you using?
1 project | reddit.com/r/redteamsec | 25 Jan 2021
Redelk - https://github.com/outflanknl/RedELK
What are some alternatives?
HELK - The Hunting ELK
wazuh-kibana-app - Wazuh - Kibana plugin
praeco - Elasticsearch alerting made simple.
go-stash - go-stash is a high performance, free and open source server-side data processing pipeline that ingests data from Kafka, processes it, and then sends it to ElasticSearch.
dnstwist - Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
sigma - Generic Signature Format for SIEM Systems
aws-cloudsaga - AWS CloudSaga - Simulate security events in AWS
wazuh-ruleset - Wazuh - Ruleset
masscan - TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
RustScan - 🤖 The Modern Port Scanner 🤖
lynis - Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
openwisp-monitoring - Network monitoring system written in Python and Django, designed to be extensible, programmable, scalable and easy to use by end users: once the system is configured, monitoring checks, alerts and metric collection happens automatically.