mozilla
/
MozDef
зеркало из https://github.com/mozilla/MozDef.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
DEPRECATED - MozDef: Mozilla Enterprise Defense Platform
168 коммитов 4 Ветки 53 Теги 68 MiB
Python 77.9%
JavaScript 9.3%
HTML 7.3%
CSS 3.1%
Shell 0.9%
Разное 1.5%
Перейти к файлу
Anthony Verez a3a7f75631 averez-issue-30: Doc for installation fix by @BjornArnelid thanks! (Issue #30) 2014-04-10 16:13:01 -07:00
benchmarking/es [averez-bench] benchmarking scripts for ES 2014-03-26 08:24:15 -07:00
bot 90% more pep8, 10% less cruft 2014-04-07 15:16:34 -07:00
cron explicitly define the config file 2014-04-03 21:11:11 -07:00
docker docker: typo mongdb -> mongodb 2014-03-31 21:36:38 -07:00
docs averez-issue-30: Doc for installation fix by @BjornArnelid thanks! (Issue #30) 2014-04-10 16:13:01 -07:00
examples averez-doc: adding nxlog-syslog configuration snippet 2014-04-10 14:09:40 -07:00
initscripts moar initscripts for uwsgi-related processes 2014-03-23 19:19:53 -07:00
kibana cloud trail dashboard 2014-03-07 11:29:07 -08:00
lib add fifo read size option, error checking on headers 2014-04-08 09:48:05 -07:00
loginput fix errant spaces 2014-03-21 14:27:31 -07:00
logs [meteor] gitignore and bug fix when empty ES 2014-03-07 10:25:54 -08:00
meteor meteor0.8: fix date picker 'load' event (not triggered) -> Template.editincidentform.rendered 2014-03-30 19:02:56 -07:00
mq allow alertworker to monitor MQ on one server and send alerts to another MQ server 2014-04-08 12:30:55 -07:00
rest more sane options 2014-03-24 15:07:12 -07:00
test Updated license file to conform with MPL 2014-02-25 09:55:02 -08:00
.gitignore [meteor] gitignore and bug fix when empty ES 2014-03-07 10:25:54 -08:00
.gitmodules Use the submodule for the mozdef python client lib 2014-04-02 11:34:39 -07:00
LICENSE Updated license file to conform with MPL 2014-02-25 09:55:02 -08:00
README.md add read the docs link 2014-03-23 13:06:38 -07:00
analyze_code.sh Removed extra mkdir line 2014-04-04 15:53:19 +02:00
requirements.txt [averez-docs] sphinx installation 2014-03-19 10:26:06 -07:00

README.md

===================================== MozDef: The Mozilla Defense Platform

Why?

The inspiration for MozDef comes from the large arsenal of tools available to attackers. Suites like metasploit, armitage, lair, dradis and others are readily available to help attackers coordinate, share intelligence and finely tune their attacks in real time. Defenders are usually limited to wikis, ticketing systems and manual tracking databases attached to the end of a Security Information Event Management (SIEM) system.

The Mozilla Defense Platform (MozDef) seeks to automate the security incident handling process and facilitate the real-time activities of incident handlers.

Goals:

  • Provide a platform for use by defenders to rapidly discover and respond to security incidents.
  • Automate interfaces to other systems like bunker, banhammer, mig
  • Provide metrics for security events and incidents
  • Facilitate real-time collaboration amongst incident handlers
  • Facilitate repeatable, predictable processes for incident handling
  • Go beyond traditional SIEM systems in automating incident handling, information sharing, workflow, metrics and response automation

Status:

MozDef is in early proof of concept phases at Mozilla.

DOCS:

http://mozdef.readthedocs.org/en/latest/