0xbad53c / wazuh-detection-rules

Related projects ⓘ

Alternatives and complementary repositories for wazuh-detection-rules

• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆61Updated 3 years ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 7 months ago
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆34Updated 2 years ago
• silverfort-open-source / latma
  ☆79Updated last year
• SanWieb / sigWah
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆33Updated 4 years ago
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆38Updated 4 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 4 years ago
• tenable / audit_files
  Nessus Audit files
  ☆30Updated last year
• Security-Onion-Solutions / securityonion-soc
  ☆46Updated this week
• cyware-labs / Threat-Response-Docker
  ☆42Updated last year
• Sh0ckFR / log4j-CVE-2021-44228-Public-IoCs
  Public IoCs about log4j CVE-2021-44228
  ☆9Updated 2 years ago
• alertflex / altprobe
  collector/runner
  ☆65Updated last year
• TonyPhipps / Elasticstack
  FIles and guides related to using Elasticstack as a SIEM
  ☆12Updated 4 years ago
• juaromu / wazuh
  ☆18Updated 3 years ago
• NVISOsecurity / nviso-cti
  ☆41Updated 7 months ago
• tevora-threat / atomic_red_team_gui
  Windows GUI/Execution Engine for Atomic Red Team Atomics
  ☆34Updated 4 years ago
• olafhartong / sysmon-modular-linux
  A repository of Sysmon For Linux configuration modules
  ☆15Updated 3 years ago
• B0fH / yara-suricata
  A Yara Lua output script for Suricata
  ☆19Updated 5 years ago
• cabve / CbR
  Queries for Carbon Black Response
  ☆11Updated 4 years ago
• juaromu / wazuh-nmap
  ☆17Updated 2 years ago
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated last week
• h0rv4th / c2matrix-analyzer
  Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
  ☆12Updated 4 years ago
• Secure-Compliance-Solutions-LLC / OpenVAS-Docker
  A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)
  ☆19Updated last year
• mdecrevoisier / Windows-WEC-server_auto-deploy
  PowerShell scripts for fast Windows Event Collector configuration with Palantir toolset
  ☆21Updated 2 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆57Updated 6 months ago
• StevenD33 / Lab-DFIR-SOC
  ☆63Updated 3 years ago
• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Updated 3 years ago
• 3CORESec / S2AN
  S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
  ☆84Updated last year