PacktPublishing / Security-Monitoring-using-Wazuh
Security Monitoring using Wazuh, published by Packt
☆21Updated last year
Alternatives and similar repositories for Security-Monitoring-using-Wazuh
Users that are interested in Security-Monitoring-using-Wazuh are comparing it to the libraries listed below
Sorting:
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆51Updated 4 months ago
- A small security playground implementation of GHOSTS User Simulation framework with an Active Directory deployment and Elastic.☆17Updated 9 months ago
- A collection of awesome tools, software, libraries, learning tutorials & videos, frameworks, best practices and technical resources abou…☆52Updated 2 years ago
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆93Updated 2 weeks ago
- Repository of tools and resources for analyzing Docker containers☆65Updated last year
- Repository for Cortex XDR and Cortex XSIAM XQL queries and more!☆27Updated 11 months ago
- Automating Security Detection Engineering, published by Packt☆54Updated 7 months ago
- Incident Response with Threat Intelligence, published by Packt☆52Updated last year
- ☆53Updated this week
- 🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …☆10Updated last year
- Import CrowdStrike Threat Intelligence into your instance of MISP☆46Updated 2 months ago
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆73Updated 3 weeks ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆29Updated 7 months ago
- ☆103Updated this week
- Security Orchestration, Automation and Response for Security Analysts, published by Packt☆20Updated 3 months ago
- The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆23Updated 2 weeks ago
- Threat Hunting with Elastic Stack, Published by Packt☆39Updated 2 years ago
- Scripts to deploy and update MISP in air-gapped environments☆17Updated 2 months ago
- SANS has a massive list of posters available for quick reference to aid you in your security learning.☆25Updated 3 years ago
- Deployment scripts and a simple reports for CIS benchmarks☆23Updated 2 months ago
- Extracts fields from zeek logs, compatible with zeek-cut☆21Updated 10 months ago
- Threat Simulator for Enterprise Networks☆14Updated 3 years ago
- ☆29Updated 6 years ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆127Updated 9 months ago
- Lua plugin to extract data from Wireshark and convert it into MISP format☆48Updated last year
- Finding ClickFix and FakeCAPTCHA like it's 1999☆36Updated this week
- Explore the GOAD Active Directory lab in 5 minutes with Adalanche☆37Updated 4 months ago
- ☆19Updated 3 years ago
- ☆33Updated 6 months ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆76Updated this week