NdS-Research-Facilities / QRadar-ruleset
QRadar Export the rule set for printing
☆21Updated 6 years ago
Related projects: ⓘ
- Pulls IOCs from MISP and adds the to reference sets in QRadar☆33Updated last year
- A Splunk app to use MISP in background☆109Updated 9 months ago
- Carbon Black Feeds☆70Updated last year
- Sysmon Splunk App☆46Updated 6 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆37Updated 2 years ago
- Carbon Black Hunting☆8Updated 8 years ago
- Download a list of suspected malicious IPs and Domains. Create a QRadar Reference Set. Search Your Environment For Malicious IPs☆66Updated 3 years ago
- ☆48Updated 4 years ago
- A Splunk app with saved reports derived from Sigma rules☆72Updated 6 years ago
- Python library for the ArcSight logger REST API☆27Updated 2 years ago
- A website and framework for testing NIDS detection☆56Updated 3 years ago
- Collection of useful, up to date, Carbon Black Response Queries☆82Updated 3 years ago
- ☆48Updated 8 years ago
- Carbonblack Live Response from the comfort of your own terminal☆20Updated 8 years ago
- Volatility plugins developed and maintained by the community☆21Updated 6 years ago
- Scripts for TheHive.☆22Updated 4 years ago
- ☆55Updated 2 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆72Updated 3 months ago
- Imports Alienvault OTX pulses to a MISP instance☆52Updated 2 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆106Updated 4 years ago
- Analyze binaries collected in VMware Carbon Black EDR against Yara rules.☆36Updated last year
- Office365 Log Analysis Framework☆81Updated 5 years ago
- ☆18Updated 2 years ago
- InvestigationPlaybookSpec☆72Updated 6 years ago
- ☆39Updated 5 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆41Updated 8 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆51Updated 2 years ago
- Deploy and maintain Symon through the Splunk Deployment Sever☆31Updated 4 years ago
- Sigma Detection Rule Repository☆84Updated 4 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆92Updated 2 years ago