Browse a library of EQL analytics now natively integrated in Elasticsearch.
Log-Killer is a tool designed for Linux/Windows servers that allows users to delete all logs by simply downloading and running the tool. For Windows servers, users can download and run the batch file as an administrator, while for Linux servers, users should run the provided PHP script. The tool comes with screenshots for Windows (batch file), Linux, and a video tutorial. Special thanks to MrSqar for the tool.
Browse a library of EQL analytics now natively integrated in Elasticsearch.
Sysdig is a system visibility tool with native container support.
Apache Metron is a centralized tool for security monitoring and analysis that integrates various open-source big data technologies.
A visualization app for hpfeeds logs.
A Command Line Map-Reduce tool for analyzing cowrie log files over time and creating visualizations and statistics.
A collection of detections for Panther SIEM with detailed setup instructions.