evoxco evoxco
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "title": "PFSense Firewall", | |
| "services": { | |
| "query": { | |
| "idQueue": [], | |
| "list": { | |
| "0": { | |
| "query": "tags: \"PFSense\" AND action: \"pass\"", | |
| "alias": "Passed", | |
| "color": "#6ED0E0", |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| input { | |
| tcp { | |
| type => syslog | |
| port => 514 | |
| } | |
| udp { | |
| type => syslog | |
| port => 514 | |
| } | |
| } |
evoxco
/ c1fappThreatIntell
Created
December 30, 2014 19:46
C1fApp Threat Intelligence Kibana dashboard
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "title": "C1fApp Threat Intelligence", | |
| "services": { | |
| "query": { | |
| "list": { | |
| "0": { | |
| "query": "index: \"cif\"", | |
| "alias": "Cif Index", | |
| "color": "#7EB26D", | |
| "id": 0, |
evoxco
/ BroIDS-Kibana-Dashboard
Last active
January 18, 2019 14:03
Bro ids Kibana Dashboard [Part 1]
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "title": "Broids", | |
| "services": { | |
| "query": { | |
| "list": { | |
| "0": { | |
| "id": 0, | |
| "color": "#7EB26D", | |
| "alias": "All Connections", | |
| "pin": true, |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "title": "Broids-HTTP", | |
| "services": { | |
| "query": { | |
| "list": { | |
| "0": { | |
| "id": 0, | |
| "color": "#7EB26D", | |
| "alias": "All Connections", | |
| "pin": true, |
evoxco
/ Bro Ids C1fApp threat intel
Created
August 4, 2015 10:59
Bro Ids C1fApp threat intel (generic intel template)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "title": "Broids-C1fApp Intel", | |
| "services": { | |
| "query": { | |
| "list": { | |
| "0": { | |
| "id": 0, | |
| "color": "#7EB26D", | |
| "alias": "All Connections", | |
| "pin": true, |
evoxco
/ Bro ids Elastic template
Last active
April 25, 2017 03:48
Bro Ids Elastic template to avoid analyse of fields
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "template": "bro*", | |
| "mappings": { | |
| "_default_": { | |
| "_timestamp": { | |
| "enabled": true, | |
| "store": true | |
| } | |
| }, | |
| "ssl": { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "index": { | |
| "default": "_all", | |
| "pattern": "[nprobe-]YYYY.MM.DD", | |
| "warm_fields": true, | |
| "interval": "day" | |
| }, | |
| "style": "light", | |
| "rows": [ | |
| { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "index": { | |
| "default": "_all", | |
| "pattern": "[nprobe-]YYYY.MM.DD", | |
| "warm_fields": true, | |
| "interval": "day" | |
| }, | |
| "style": "light", | |
| "rows": [ | |
| { |
evoxco
/ nprobe-mapping-template
Last active
October 6, 2015 07:13
Nprobe ElasticSearch Mapping Template
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "template": "nprobe*", | |
| "mappings": { | |
| "_default_": { | |
| "_timestamp": { | |
| "enabled": true, | |
| "store": true | |
| } | |
| }, | |
| "nProbe": { |
OlderNewer