ElasticSA / wec_peppedLinks
Pep up your Windows Event Collector (WEC) for Windows Event Forwarding (WEF)
☆19Updated 3 years ago
Alternatives and similar repositories for wec_pepped
Users that are interested in wec_pepped are comparing it to the libraries listed below
Sorting:
- Wazuh - Splunk App☆55Updated 9 months ago
- A solution for using the ElastiFlow Unified Collector with the Elastic Stack (Elasticsearch and Kibana).☆24Updated last week
- Setup a Primary Domain Controller and Active Directory on a Windows Server with a easy to use and abstracted Ansible role.☆21Updated last year
- Custom Kibana dashboards to secure and monitor Microsoft 365.☆13Updated last year
- Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…☆16Updated 4 years ago
- This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler☆12Updated 3 years ago
- Ubuntu 20.04 LTS | CIS Hardening Ansible Role☆9Updated 2 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- Elastic Beat for fetching and shipping Office 365 audit events☆67Updated 4 years ago
- 🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …☆10Updated last year
- Converts Netwitness log parser configuration to Logstash configuration☆20Updated 4 years ago
- Tools for Wazuh by Juan C. Tello☆14Updated 3 years ago
- CyberArk Ansible Security Automation Collection☆63Updated last month
- Ansible Role to install LAPS on Windows - https://technet.microsoft.com/en-us/mt227395.aspx☆12Updated 4 years ago
- This repository contains a few examples of actions that can be added to rules within Elastic Security.☆22Updated 4 months ago
- Read only mirror. To contribute or submit issues, please go to the website link --->☆13Updated last year
- Automated CIS Benchmark Compliance Remediation for Postgresql-12.x with Ansible☆12Updated last year
- Windows Event Forwarding/Collection - A simple way to get quick, comprehensive logging for a Windows environment.☆15Updated 3 years ago
- Web based S1 query navigator for one-click threat hunting☆19Updated 4 years ago
- Ansible playbook automation for pfelk☆23Updated 3 years ago
- Automated STIG Benchmark Compliance Audit for RHEL 8 with Ansible & GOSS☆12Updated 3 weeks ago
- Sync /etc/hosts.deny with Cisco Talos IP Blacklist☆11Updated 6 years ago
- Kibana 7 Templates for Suricata IDPS Threat Hunting☆41Updated 2 years ago
- Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.☆13Updated 4 years ago
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆10Updated 5 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆66Updated 3 years ago
- Understand OVAL results in a blink of an eye☆35Updated 2 years ago
- ☆17Updated 3 years ago
- Our collection of Wazuh detection rules for our Offense Lab☆14Updated 3 years ago