ElasticSA / wec_pepped
Pep up your Windows Event Collector (WEC) for Windows Event Forwarding (WEF)
☆19Updated 3 years ago
Alternatives and similar repositories for wec_pepped:
Users that are interested in wec_pepped are comparing it to the libraries listed below
- Wazuh - Splunk App☆53Updated 7 months ago
- Converts Netwitness log parser configuration to Logstash configuration☆20Updated 4 years ago
- A solution for using the ElastiFlow Unified Collector with the Elastic Stack (Elasticsearch and Kibana).☆23Updated 3 months ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆9Updated 4 years ago
- Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…☆16Updated 3 years ago
- A collection of open source Graylog integrations that will be released together.☆16Updated last year
- Kibana 7 Templates for Suricata IDPS Threat Hunting☆40Updated 2 years ago
- ☆48Updated this week
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated 2 weeks ago
- This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler☆12Updated 3 years ago
- IBM QRadar Ansible Collection☆24Updated last month
- Tools for Wazuh by Juan C. Tello☆14Updated 3 years ago
- Windows Event Forwarding/Collection - A simple way to get quick, comprehensive logging for a Windows environment.☆15Updated 2 years ago
- Elastic Beat for fetching and shipping Office 365 audit events☆67Updated 4 years ago
- Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …☆27Updated 9 months ago
- Ubuntu 20.04 LTS | CIS Hardening Ansible Role☆9Updated 2 years ago
- Web based S1 query navigator for one-click threat hunting☆19Updated 4 years ago
- Custom Kibana dashboards to secure and monitor Microsoft 365.☆13Updated last year
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- Fortinet configuration file convertor to JSON, XSLS files☆10Updated last year
- Ansible playbook automation for pfelk☆23Updated 3 years ago
- Read only mirror. To contribute or submit issues, please go to the website link --->☆13Updated last year
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆53Updated 2 weeks ago
- ☆17Updated 3 years ago
- MineMeld nodes for MISP☆19Updated last year
- setup and configure linux auditd☆21Updated last week
- Utility to automate generating and uploading STIX files to ExtraHop appliances via the REST API.☆8Updated 9 months ago
- 🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …☆10Updated last year
- Leverage the Check Point’s threat intelligence to enrich your SIEM and SOAR solutions and to secure your business applications and websit…☆27Updated last year