The Elastic stack (ELK) powered by Docker and Compose.

Slides and code samples for training, tutorials, and workshops about Docker, containers, and Kubernetes.

Network flow analytics (Netflow, sFlow and IPFIX) with the Elastic Stack

Elasticsearch, Logstash, Kibana (ELK) Docker image

Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-time alerting, helping small to medium-sized organizations secure their infrastructure. LME Docs can be found at https://cisagov.github.io/lme-docs/docs/

Docker configuration for ELK monitoring stack with Curator and Beats data shippers support

Suricata IDS/IPS log analytics using the Elastic Stack.

Docker image for Logstash 1.4

Tools for Loading and Visualising AWS Detailed Billing with ELK(Elasticsearch, Logstash, Kibana)

my-scripts

服务器docker环境

Snort IDS/IPS log analytics using the Elastic Stack.

ElasticSearch 1.7 (+data container) | Logstash 1.5.3 (+conf for elk logs) | Kibana 4 (+Dashboard for elk logs) | cAdvisor (Collect & View containers performance) | Nginx Proxy 1.9.3 (for SSL + password access).

tshark + ELK analytics virtual machine

A BOSH-scalable ELK release

A repository stores some dockerfiles or docker-compose files for quickly starting service or service cluster.

SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab

brostash: Linux distribution based on Debian and focusing on network security events collection

Syslog collection with the Elastic Stack.

All DevOps related scripts and resources mostly using Docker+Terraform+Swarm+Docker-Machine