#java #amqp #gelf #graylog #hacktoberfest #kafka #log_analysis #log_collector #log_management #log_viewer #logging #logging_server #secure_logging #security #siem #syslog
https://github.com/Graylog2/graylog2-server
https://github.com/Graylog2/graylog2-server
GitHub
GitHub - Graylog2/graylog2-server: Free and open log management
Free and open log management. Contribute to Graylog2/graylog2-server development by creating an account on GitHub.
#other #architecture #cert #csirt #detection #incident_response #management #mitre_attack #purpleteam #risk_management #siem #sirp #soa #soar #soc #tip #ttp
https://github.com/cyb3rxp/awesome-soc
https://github.com/cyb3rxp/awesome-soc
GitHub
GitHub - cyb3rxp/awesome-soc: A curated knowledge base to build, run and mature a SOC (including CSIRT).
A curated knowledge base to build, run and mature a SOC (including CSIRT). - cyb3rxp/awesome-soc
#python #elasticsearch #ids #logging #monitoring #security #siem #signatures #splunk #sysmon
Sigma is a way to share rules for detecting bad behavior in computer logs. It's like a common language that works with many different systems, making it easy to share and use detection methods across different platforms. This helps security teams work together and improve their ability to find threats. Sigma rules are flexible, easy to write, and can be used with systems like Splunk, Elasticsearch, and Microsoft Defender. The main benefit is that you can write a rule once and use it on many systems, saving time and effort.
https://github.com/SigmaHQ/sigma
Sigma is a way to share rules for detecting bad behavior in computer logs. It's like a common language that works with many different systems, making it easy to share and use detection methods across different platforms. This helps security teams work together and improve their ability to find threats. Sigma rules are flexible, easy to write, and can be used with systems like Splunk, Elasticsearch, and Microsoft Defender. The main benefit is that you can write a rule once and use it on many systems, saving time and effort.
https://github.com/SigmaHQ/sigma
GitHub
GitHub - SigmaHQ/sigma: Main Sigma Rule Repository
Main Sigma Rule Repository. Contribute to SigmaHQ/sigma development by creating an account on GitHub.
❤1
#yara #awesome_list #blueteam #blueteam_tools #cti #detection #detection_engineering #dfir #hacktools #incident_response #ioc #iocs #ir #ransomware #redteam #rmm #security #siem #soc #threat_hunting #threat_intelligence
You can access comprehensive security detection lists and threat hunting resources that help identify malicious activity across your infrastructure. These curated collections include indicators like suspicious file hashes, domain names, IP addresses, and behavioral patterns organized by threat type—from ransomware and phishing to command-and-control servers and vulnerable drivers. By integrating these lists into your security tools like SIEM platforms and endpoint detection systems, you gain immediate visibility into known threats while learning detection methodologies through guides and YARA rules. This accelerates your ability to hunt for compromises, validate security controls, and stay current with emerging attack techniques without building detection logic from scratch.
https://github.com/mthcht/awesome-lists
You can access comprehensive security detection lists and threat hunting resources that help identify malicious activity across your infrastructure. These curated collections include indicators like suspicious file hashes, domain names, IP addresses, and behavioral patterns organized by threat type—from ransomware and phishing to command-and-control servers and vulnerable drivers. By integrating these lists into your security tools like SIEM platforms and endpoint detection systems, you gain immediate visibility into known threats while learning detection methodologies through guides and YARA rules. This accelerates your ability to hunt for compromises, validate security controls, and stay current with emerging attack techniques without building detection logic from scratch.
https://github.com/mthcht/awesome-lists
GitHub
GitHub - mthcht/awesome-lists: Awesome Security lists for SOC/CERT/CTI
Awesome Security lists for SOC/CERT/CTI. Contribute to mthcht/awesome-lists development by creating an account on GitHub.