13ihsan92 / Security-Blue-TeamLinks
This repository will describe the details surrounding the SIEM (wazuh) mini project, which will cover all aspects of topology design, deployment, rules, integration, and fine tune.
β26Updated 2 years ago
Alternatives and similar repositories for Security-Blue-Team
Users that are interested in Security-Blue-Team are comparing it to the libraries listed below
Sorting:
- π§° Various PowerShell scripts for security, sysadmins, blue and red teamsπ«πΌβ46Updated 3 months ago
- T-Guard Repositoryβ17Updated last year
- a curated, categorised collection of useful projects π¨βπ©βπ§ββ121Updated 3 weeks ago
- Open-source powered SIEM, Vulnerability Scanning, Host- & Network-IDS. Built upon Elastic Stack, OpenVAS, Suricata. Wrapped in a Python Fβ¦β16Updated 3 years ago
- Useful scripts for those administering Wazuhβ87Updated 2 weeks ago
- Run individual controls or full compliance benchmarks for CIS across all of your Microsoft 365 and Office 365 tenants using Powerpipe andβ¦β27Updated last month
- β39Updated 2 years ago
- β30Updated 2 years ago
- Newly registered Domain Monitoring to detect phishing and brand impersonation with subdomain enumeration and source code scrapingβ60Updated last month
- Collection of scripts, files, and tips to create and maintain networks, hack, and more!β73Updated 4 years ago
- This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwarβ¦β35Updated 7 months ago
- β19Updated 2 years ago
- A walkthrough on how I set up Microsoft Server 2019 on a Virtual Machine to run Active Directory on it. I then configure a Domain Controlβ¦β63Updated 2 years ago
- π€ Bot to get the last Cyber Security information in a Microsoft Teams channel π΄ββ οΈβ47Updated this week
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Serviceβ30Updated last year
- π IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS β¦β11Updated last year
- An ongoing curated collection of awesome software, libraries, frameworks, talks & videos, best practices, learning tutorials and importanβ¦β20Updated 3 years ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-β¦β103Updated last year
- Standard-Format Threat Intelligence Feedsβ126Updated this week
- Wazuh integration TheHiveβ40Updated 2 years ago
- Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Groupβ86Updated 10 months ago
- β52Updated 3 months ago
- With EmailAnalyzer you can analyze your suspicious emails. You can extract headers, links, and hashes from the .eml file and you can geneβ¦β279Updated 2 years ago
- Import CrowdStrike Threat Intelligence into your instance of MISPβ48Updated 5 months ago
- Deployment scripts and a simple reports for CIS benchmarksβ28Updated 6 months ago
- A SOC Analyst's tool to automate the investigation & validation of possible Indicators of Compromise (IOCs) and perform various tasks incβ¦β28Updated 3 years ago
- Security Scripts and Sources for daily usage.β67Updated last week
- Repo to hold wazuh manager mcp serverβ67Updated 2 months ago
- A collection of awesome tools, software, libraries, learning tutorials & videos, frameworks, best practices and technical resources abouβ¦β58Updated 2 years ago
- Create a SOC lab with SIEM, AD, Workstation, Firewall, Sysmon, IPS. Step by Stepβ30Updated 3 years ago