Brostash Save

brostash: Linux distribution based on Debian and focusing on network security events collection

Project README

Brostash

Linux distribution based on Debian and focusing on network security events collection. It comes with the following extra packages/tools:

  • Zeek(Bro) IDS (version: 2.6.1): compiled with PF_RING support.

  • PF_RING (version: 7.2.0): to speed up the packet processing.

  • Filebeat (version: 6.6): for log shipping.

  • Packetbeat (version: 6.6): for network data shipping. Lightweight optional replacement of Bro.

To deploy brostash on a rasberry pi or build an elastic cluster to store the generated logs, check the ansible playbooks in brostash-devops. Also the repository brostash-pipeline provides a collection of Logstash filters for different types of Bro logs.

Open Source Agenda is not affiliated with "Brostash" Project. README Source: binorassocies/brostash
Stars
34
Open Issues
0
Last Commit
3 years ago
Repository
binorassocies/brostash
License
GPL-3.0
Tags
Bro Bro Ids Debian Elk Filebeat Linux Linux Distribution Packetbeat Pf Ring Security

Open Source Agenda Badge

Open Source Agenda Rating
Submit Review Review Your Favorite Project
Submit Resource Articles, Courses, Videos
Submit Article Submit a post to our blog

From the blog

Dec 11, 2022

How to Choose Which Programming Language to Learn First?

From the blog

Dec 11, 2022

How to Choose Which Programming Language to Learn First?