dsiem
auditd-attack
dsiem | auditd-attack | |
---|---|---|
3 | 1 | |
431 | 771 | |
0.2% | - | |
6.0 | 10.0 | |
about 1 month ago | almost 4 years ago | |
Go | ||
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
dsiem
auditd-attack
What are some alternatives?
RedELK - Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
adversary_emulation_library - An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
go-stash - go-stash is a high performance, free and open source server-side data processing pipeline that ingests data from Kafka, processes it, and then sends it to ElasticSearch.
sysmon-modular - A repository of sysmon configuration modules
velociraptor - Digging Deeper....
auditd - Best Practice Auditd Configuration
docker-elk - The Elastic stack (ELK) powered by Docker and Compose.
RedEye - RedEye is a visual analytic tool supporting Red & Blue Team operations