Skip to content
/ brostash Public

brostash: Linux distribution based on Debian and focusing on network security events collection

License

GPL-3.0 license
34 stars 8 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

binorassocies/brostash

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

31 Commits
data
data
 
 
packer
packer
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
brostash_build.sh
brostash_build.sh
 
 

Repository files navigation

Brostash

Linux distribution based on Debian and focusing on network security events collection. It comes with the following extra packages/tools:

  • Zeek(Bro) IDS (version: 2.6.1): compiled with PF_RING support.

  • PF_RING (version: 7.2.0): to speed up the packet processing.

  • Filebeat (version: 6.6): for log shipping.

  • Packetbeat (version: 6.6): for network data shipping. Lightweight optional replacement of Bro.

To deploy brostash on a rasberry pi or build an elastic cluster to store the generated logs, check the ansible playbooks in brostash-devops. Also the repository brostash-pipeline provides a collection of Logstash filters for different types of Bro logs.

About

brostash: Linux distribution based on Debian and focusing on network security events collection

Topics

linux security debian filebeat elk pf-ring linux-distribution bro packetbeat bro-ids

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

34 stars

Watchers

5 watching

Forks

8 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages