DEPRECATED - MozDef: Mozilla Enterprise Defense Platform
Перейти к файлу
Brandon Myers 3345587f32
Fixup dashboard geomodel alert action
2019-06-28 17:35:41 -05:00
alerts Fixup dashboard geomodel alert action 2019-06-28 17:35:41 -05:00
benchmarking Fixup block comments not having a space after hash 2018-12-14 13:40:07 -06:00
bot Remove call to encode ascii on strings 2019-06-28 17:26:58 -05:00
cloudy_mozdef Remove call to encode ascii on strings 2019-06-28 17:26:58 -05:00
config Update missing references to alertactions in syslog configs 2019-03-21 17:36:47 -05:00
cron Remove call to encode ascii on strings 2019-06-28 17:26:58 -05:00
docker Ensure parenthesis for print statements 2019-06-28 16:28:14 -05:00
docs Move vidyo cron script and dependencies into mozdef-deprecated 2019-06-03 13:17:07 -05:00
examples Merge branch 'master' into themed-css 2019-03-28 11:38:49 -05:00
loginput Add json array input decode with try catch to fall back to string splitting 2019-05-28 16:47:04 -07:00
meteor Fix kibanaurl for documents in kibana6 2019-06-10 18:57:50 -05:00
mozdef_util Remove call to encode ascii on strings 2019-06-28 17:26:58 -05:00
mq Remove call to encode ascii on strings 2019-06-28 17:26:58 -05:00
rest Fixup reload function namespace 2019-06-28 16:43:52 -05:00
static Remove heatmap html page 2017-06-15 15:07:42 -05:00
systemdfiles Fixup remaining mozdefalertplugin references 2019-03-22 12:23:40 -05:00
tests Fixup dashboard geomodel alert action 2019-06-28 17:35:41 -05:00
.flake8 Exclude mozdef_util build directory from flake8 checks 2019-04-09 15:30:05 -04:00
.gitignore Vim swp files 2019-04-29 20:42:20 -04:00
.travis.yml Update python version definition in travisci 2019-06-28 15:25:36 -05:00
CHANGELOG Update mozdef version for v2.0.0 2019-06-28 14:28:01 -05:00
CODEOWNERS Update codeowners to include admin set for all clauses 2019-05-14 13:10:40 -05:00
CODE_OF_CONDUCT.md Add Mozilla Code of Conduct file 2019-03-27 21:24:28 -07:00
CONTRIBUTING.md Modifying urls to point to mozilla from jeffbryner, slight readability changes. 2017-06-15 15:07:30 -05:00
LICENSE Updated license file to conform with MPL 2014-02-25 09:55:02 -08:00
Makefile fix nocache 2019-05-23 16:27:56 -07:00
README.md Merge branch 'master' into master 2019-06-12 17:15:14 +00:00
requirements.txt Fix import static files in setup.py for 2.0.3 2019-06-28 16:22:31 -05:00

README.md

Build Status Documentation Status

MozDef: LOGO

Documentation:

http://mozdef.readthedocs.org/en/latest/

Give MozDef a Try in AWS:

The following button will launch the Mozilla Enterprise Defense Platform in your AWS account.

Warning: Pressing the "Launch Stack" button and following through with the deployment will incur charges to your AWS account.

Launch MozDef

Why?

The inspiration for MozDef comes from the large arsenal of tools available to attackers. Suites like metasploit, armitage, lair, dradis and others are readily available to help attackers coordinate, share intelligence and finely tune their attacks in real time. Defenders are usually limited to wikis, ticketing systems and manual tracking databases attached to the end of a Security Information Event Management (SIEM) system.

The Mozilla Enterprise Defense Platform (MozDef) seeks to automate the security incident handling process and facilitate the real-time activities of incident handlers.

Goals:

  • Provide a platform for use by defenders to rapidly discover and respond to security incidents.
  • Automate interfaces to other systems like bunker, cymon, mig
  • Provide metrics for security events and incidents
  • Facilitate real-time collaboration amongst incident handlers
  • Facilitate repeatable, predictable processes for incident handling
  • Go beyond traditional SIEM systems in automating incident handling, information sharing, workflow, metrics and response automation

Status:

MozDef is in production at Mozilla where we are using it to process over 300 million events per day.

Survey & Contacting us

If you're interested in running MozDef and would like to give us feedback, please take the following surveys:

These survey also include a contact form where you can reach us if you would like to (it's optional)

Note: These surveys will be open for a limited amount of time, in order to ensure that we look at your feedback in a timely fashion. Thanks for your understanding!