pfSense/OPNsense + Elastic Stack

Threat Alert Logic Repository

Manage, monitor and improve your cyber security posture.

Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.

Install a full Splunk Enterprise Cluster or Universal forwarder using an ansible playbook

SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab

This repository bundles various utilities and scripts I built for use with IBM QRadar SIEM

Repo for Automations and other solutions for Elastic SIEM/Security.

Open Source data and event driven real time Monitoring and Analytics Platform

A Siem environment using Guard Duty + Kibana + S3 + ES + Cognito + Kinesis

A dockerized demo for illustrating how Confluent can be used in a SIEM Modernization use case.

This repository documents my hands on experience and assignments during the Columbia University Cybersecurity Program. It includes home labs related to network security, penetration testing, and defensive security

This system is a combination of 3 open-source tools that include Zeek for Intrusion Detection System (IDS), StratosphereIPS for the machine learning Process, and ELK Stack for log management and SIEM.

Student project for SIEM center using ELK stack

Honeypot with a twist of Red Teaming!

Wazuh is an open-source security information and event management (SIEM) platform. It provides intrusion detection, vulnerability detection, and response capabilities. With active threat intelligence, Wazuh enhances security monitoring and incident response in diverse IT environments.

pfSense/OPNsense + Elastic Stack

An ELK (Elastic, Logstask, Kibana) stack with TLS Certs for a simple deployment.

This application provides a reliable and scalable way to collect Akamai Security Events (WAF, DDoS, BOT, etc.) and easily store it into different analytics platforms.

A Linux-based automatic installation multi-purpose closed-up hardened appliance