Network Behavior Analytics for Graylog

dscryber · March 9, 2022, 7:01pm

Network Behavior Analytics for Graylog

@alphasoc-deploy

Download from Github
View on Github
Open Issues
Stargazers

This content pack establishes a GELF input by which AlphaSOC alerts can be sent to Graylog by Network Flight Recorder (NFR), and a dashboard to summarize infected hosts and anomalies within the environment. NFR performs scoring of network traffic (DNS and IP events) which can be collected on the wire, or loaded via Bro IDS, Suricata, or other sources.

Topic	Replies	Views
NxFilter_BR for Graylog Content Pack content-pack	687	March 9, 2022
Active Directory Auditing (NXLOG) - Graylog 2.x Content Pack content-pack	3235	March 7, 2022
Nginx content pack with JSON for easier, flexible logging Plug-Ins plug-in	2834	February 24, 2022
HTTP Monitor for Graylog Content Pack content-pack	2032	March 8, 2022
Nginx via graylog collector Content Pack content-pack	2346	March 9, 2022

Network Behavior Analytics for Graylog

Network Behavior Analytics for Graylog

Related topics