-
Notifications
You must be signed in to change notification settings - Fork 5
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
MOST IMPORTANT PART OF PROJECT PART #2 -- minor cosmetic changes to R…
…EADME.md
- Loading branch information
alhazred
authored and
alhazred
committed
Aug 23, 2020
1 parent
907228e
commit 2730012
Showing
1 changed file
with
0 additions
and
3 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -13,9 +13,6 @@ | |
|
|
||
| v0.1 -- Caleb Anderson [email protected] | ||
|
|
||
|
|
||
| # SIEM FROM SCRATCH | ||
|
|
||
| This project creates a drop in ELK SIEM component for use in a infosec redteam lab. It will install the ELK stack, register a trial, create TLS certificates, setup users, setup beat index templates etc etc. (see "Activities"). This is not designed to replace the excellent DetectionLab (https://github.com/clong/DetectionLab), but instead provide an easy to use, low configuration, drop-in component you can integrate into existing labs or use as part of custom redteam scenarios. | ||
|
|
||
| To create a complete lab the only thing required should be to install beats agents on boxes and point them at the SIEM. | ||
|
|
||