I’ve been working in the IP blackhole known as the banking sector for the past few years, so my Github profile is a little sparse. While I work on publicly releasing more projects, here are some of the ones I’ve already managed to put out there…
A python utility for dumping data from ES to disk. ES documents are written to a BZip compresed json files on a per index/type basis.
I used this to migrate an old ES cluster to a new ETL platform.
A security information and event management (SIEM) designed to focus on active threat analysis. The backend will be optimized for link analysis and graph search in order to tie advanced lateral threats to business value.