Skip to content
/ SIEM_lab Public

How I would set up a home lab with Enterprise/S-Business in mind for remote monitoring.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Shaggy-alt/SIEM_lab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
Physical.md
Physical.md
 
 
PlayBook.md
PlayBook.md
 
 
README.md
README.md
 
 
Virtual.md
Virtual.md
 
 

Repository files navigation

NOTE: For Admin/SOC usage.

This will continue from

The goal of this project is to get an understanding of how A Security Operations Center operates with its procedures and how they would build "Playbooks" with the intent of using during said events.

I will make a environment made for detecting/practicing blue team tactics.

Installation Links: these are Open Source except for one.

OSSEC: https://www.ossec.net/ossec-downloads/

SNORT: https://www.snort.org/downloads

SPLUNK: https://www.splunk.com/en_us/download/splunk-cloud.html (This is not Open Source and only has 14 day trial.)

OSSIM: (manual build) https://github.com/ossimlabs/ossim OR (ISO build) https://cybersecurity.att.com/products/ossim

Under Construction

About

How I would set up a home lab with Enterprise/S-Business in mind for remote monitoring.

Topics

splunk siem

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published