The inspiration for MozDef comes from the large arsenal of tools available to attackers. Suites like metasploit, armitage, lair, dradis and others are readily available to help attackers coordinate, share intelligence and finely tune their attacks in real time. Defenders are usually limited to wikis, ticketing systems and manual tracking databases attached to the end of a Security Information Event Management (SIEM) system.The Mozilla Defense Platform (MozDef) seeks to automate the security incident handling process and facilitate the real-time activities of incident handlers.
siem elk elk-stack elasticsearch securityThis repository (formerly known as orchestration-workshop) contains materials (slides, scripts, demo app, and other code samples) used for various workshops, tutorials, and training sessions around the themes of Docker, containers, and orchestration. If you're looking for the materials, you can stop reading right now, and hop to http://container.training/, which hosts all the slides decks available.
workshop docker swarm kubernetes training labs slides compose helm stern elk dockerfilesThis Docker image provides a convenient centralised log server and log management web interface, by packaging Elasticsearch, Logstash, and Kibana, collectively known as ELK. See the ELK Docker image documentation web page for complete instructions on how to use this image.
elk logstash elasticsearch kibana docker-imageRun the latest version of the Elastic stack with Docker and Docker Compose. It will give you the ability to analyze any data set by using the searching/aggregation capabilities of Elasticsearch and the visualization power of Kibana.
docker elasticsearch logstash kibana elk docker-compose searchguardElastiFlow™ provides network flow data collection and visualization using the Elastic Stack (Elasticsearch, Logstash and Kibana). It supports Netflow v5/v9, sFlow and IPFIX flow types (1.x versions support only Netflow v5/v9). The following dashboards are provided.
elasticsearch logstash kibana netflow sflow ipfix elk elk-stack elasticstackA Hunting ELK (Elasticsearch, Logstash, Kibana) with advanced analytic capabilities.At the end of the HELK installation, you will have a similar output with the information you need to access the primary HELK components. Remember that the default username and password for the HELK are helk:hunting.
hunting elasticsearch kibana logstash hunting-platforms elk elk-stack elastic docker jupyter-notebook threat-hunting spark dockerhub threat-detection threatJustLog takes logging on iOS to the next level. It supports console, file and remote Logstash logging via TCP socket with no effort. Support for logz.io available. At Just Eat, logging and monitoring are fundamental parts of our job as engineers. Whether you are a back-end engineer or a front-end one, you'll often find yourself in the situation where understanding how your software behaves in production is important, if not critical. The ELK stack for real-time logging has gained great adoption over recent years, mainly in the back-end world where multiple microservices often interact with each other.
logstash logz tcp-socket swiftybeaver elk ios logging kibana monitoringSmart log parser written in Node
logs logging log-management logshipper elk elk-stack nodejs monitoring alerting sematext logsene log-parser log-shipper elasticsearch indexingBlog post on Medium with some more elaboration.This is a secure out-of-the-box monitoring, logging and alerting suite for Docker-hosts and their containers, complete with dashboards to monitor and explore your host and container logs and metrics.
grafana prometheus elastalert monitoring-alerts logging-alerts elk kibana elasticsearch alertmanager dashboard metrics logstash logs docker cadvisor monitoring docker-monitoringRuby client for 46elks "Voice, SMS & MMS" service. https://www.46elks.com/ At the moment the API only supports sending SMS messages. Elk uses rspec and webmock for testing, do a bundle install for all the development requirements.
elk sms messaging api-clientHere you can find an installer for the ELK stack (Elasticsearch - Logstash - Kibana) for Windows. There are a few tutorials on the internet that describe how to do this operation manually. This installer is designed to install the required files and install the ELK services on the system hopefully saving you some time in the process. You can download the installer from the releases section.
elk kibana logstash elasticsearch installer nsisAn Ansible Role that installs Elasticsearch on RedHat/CentOS or Debian/Ubuntu. Requires at least Java 7 (Java 8+ preferred). See geerlingguy.java role instructions for installing OpenJDK 8.
ansible role elasticsearch elk loggingAn Ansible Role that installs Elasticsearch Curator on RedHat/CentOS or Debian/Ubuntu. On RedHat/CentOS, make sure you have the EPEL repository configured, so the python-pip package can be installed. You can install the EPEL repo by simply adding geerlingguy.repo-epel to your playbook's roles.
ansible role elasticsearch elasticsearch-curator elk logging cronAn Ansible Role that installs Filebeat on RedHat/CentOS or Debian/Ubuntu. None.
ansible role filebeat elasticsearch elk loggingAn Ansible Role that installs Logstash on RedHat/CentOS Debian/Ubuntu. Note that this role installs a syslog grok pattern by default; if you want to add more filters, please add them inside the /etc/logstash/conf.d/ directory. As an example, you could create a file named 13-myapp.conf with the appropriate grok filter and restart logstash to start using it. Test your grok regex using the Grok Debugger.
ansible role logstash elk loggingAn Ansible Role that installs Logstash Forwarder on RedHat/CentOS or Debian/Ubuntu. None.
ansible role logstash elk logstash-forwarder loggingA small utility to sync Kibana config objects (dashboards, visuals, searches, etc...) with a local directory. Config attributes correspond to the parameters that are shown via kibconfig --help.
kibana elk dashboardsAWS CloudWatch to ELK is a command line interface (CLI) to extract events from Amazon CloudWatch logs and load them into a local Elasticsearch/Logstash/Kibana (ELK) cluster. CloudWatch logs are not easy to read and analyse. It's not possible to aggregate the logs from different streams or use full text search capabilities.
aws cloudwatch-logs elk docker reactive-programming rxjava
We have large collection of open source products. Follow the tags from
Tag Cloud >>
Open source products are scattered around the web. Please provide information
about the open source projects you own / you use.
Add Projects.