PacktPublishing / Security-Monitoring-using-Wazuh

Related projects ⓘ

Alternatives and complementary repositories for Security-Monitoring-using-Wazuh

• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆47Updated last month
• PacktPublishing / Incident-Response-with-Threat-Intelligence
  Incident Response with Threat Intelligence, published by Packt
  ☆49Updated 6 months ago
• PacktPublishing / Threat-Hunting-with-Elastic-Stack
  Threat Hunting with Elastic Stack, Published by Packt
  ☆38Updated last year
• PacktPublishing / Purple-Team-Strategies
  Purple Team Strategies, Published by Packt
  ☆11Updated last year
• PacktPublishing / Security-Orchestration-Automation-and-Response-for-Security-Analysts
  Security Orchestration, Automation and Response for Security Analysts, published by Packt
  ☆17Updated last year
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆125Updated last year
• BinaryDefense / ThreatHuntingJupyterNotebooks
  ☆58Updated 2 years ago
• PaloAltoNetworks / cortex-xql-queries
  Repository for Cortex XDR and Cortex XSIAM XQL queries and more!
  ☆22Updated 5 months ago
• EZToolsManuals / EZToolsManuals
  A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub
  ☆63Updated last year
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆70Updated 3 weeks ago
• SigmaHQ / pySigma-backend-splunk
  pySigma Splunk backend
  ☆34Updated 7 months ago
• invictus-ir / o365_dataset
  A dataset containing Office 365 Unified Audit Logs for security research and detection
  ☆48Updated 2 years ago
• fireeye / CVE-2021-44228
  OpenIOC rules to facilitate hunting for indicators of compromise
  ☆38Updated 2 years ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆85Updated last year
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆96Updated last year
• signorrayan / SplunkThreatHunting
  This repository contains Splunk queries to hunt some anomalies
  ☆38Updated 2 years ago
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆51Updated last year
• Bert-JanP / Domain-Response
  Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…
  ☆44Updated 7 months ago
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆47Updated last year
• DhaeyerWolf / ICS-OT_wireshark_profiles
  ICS/OT related Wireshark profiles + adding some other (IT or OT related) Open Source Wireshark Profiles
  ☆16Updated this week
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆49Updated 2 years ago
• Resistor52 / DockerCrashCourse
  Docker Crash Course: How to containerize your favorite security tools
  ☆27Updated last year
• PacktPublishing / Industrial-Cybersecurity-Second-Edition
  Industrial Cybersecurity Second Edition, published by Packt
  ☆23Updated last year
• dfirence / ma-insights-xe
  User Feedback Space of #MitreAssistant
  ☆37Updated last year
• fr0gger / jupyter-collection
  Collection of Jupyter Notebooks by @fr0gger_
  ☆142Updated 2 months ago
• PacktPublishing / Practical-Threat-Detection-Engineering
  Practical Threat Detection Engineering, Published by Packt
  ☆58Updated last year
• securityjoes / Crowdstrike-Deploy
  The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆22Updated 2 months ago
• microsoft / msticpy-lab
  A lab environment for learning about MSTICPy
  ☆36Updated last year
• lkarlslund / adalanche-sampledata
  Explore the GOAD Active Directory lab in 5 minutes with Adalanche
  ☆34Updated 10 months ago