GenRockeR / mpsiemlib
MP SIEM SDK
☆25Updated last month
Alternatives and similar repositories for mpsiemlib:
Users that are interested in mpsiemlib are comparing it to the libraries listed below
- реп полезностей для PT MaxPatrol SIEM☆24Updated last year
- Chrome extension for SOC automations☆34Updated 3 weeks ago
- Enterprise Response Model & Common Knowledge☆36Updated 9 months ago
- System of Orchestration, Lifecycle control, Detection and Response☆58Updated last year
- Открытый репозиторий с правилами на языке eXtraction and Processing (XP)☆20Updated last week
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆52Updated 2 months ago
- ☆58Updated last year
- ☆20Updated 3 years ago
- Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked …☆33Updated 7 months ago
- A repository with data about APTs☆11Updated 2 years ago
- ☆65Updated 3 years ago
- Pulls IOCs from MISP and adds the to reference sets in QRadar☆34Updated last year
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆52Updated 2 years ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆163Updated last year
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 2 years ago
- Harvest Linux forensic data for operational triage of an event.☆51Updated 9 months ago
- This will be a repository of SentinelOne Deep Visibility queries both the Standard Queries and the Power Queries. Most of these queries w…☆25Updated 5 months ago
- Extensible framework for analyzing publicly available information about vulnerabilities☆110Updated 3 months ago
- A collection of tips for using MISP.☆74Updated 3 months ago
- Sigma Detection Rule Repository☆87Updated 4 years ago
- Forensic Artifact Collection Tool Matrix☆83Updated 4 months ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- ☆57Updated last year
- ☆39Updated 2 years ago
- Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…☆90Updated last month
- Convert Sigma rules to LogRhythm searches☆20Updated 3 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆64Updated 3 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated last week
- SIEGMA - Transform Sigma rules into SIEM consumables☆149Updated 3 weeks ago
- Sample evtx files to use for testing hayabusa detection rules☆51Updated 4 months ago