S3COPS / ArcSight-Sysmon-FlexConnectorLinks
Microfocus ArcSight FlexConnector for Microsoft Sysmon tool
☆19Updated 4 years ago
Alternatives and similar repositories for ArcSight-Sysmon-FlexConnector
Users that are interested in ArcSight-Sysmon-FlexConnector are comparing it to the libraries listed below
Sorting:
- ☆58Updated last year
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆66Updated 3 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆53Updated 2 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- ☆49Updated 4 years ago
- Using QRadar API☆20Updated 7 years ago
- Audix is a PowerShell tool to quickly configure the Windows Event Audit Policies for security monitoring☆117Updated 5 years ago
- This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.☆82Updated 2 years ago
- Powershell - web traffic whitenoise generator☆47Updated 5 years ago
- ☆77Updated 6 years ago
- A Splunk app with saved reports derived from Sigma rules☆73Updated 7 years ago
- Lists of sources and utilities utilized to hunt, detect and prevent evildoers.☆166Updated 6 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- ☆54Updated 4 years ago
- Deploy and maintain Symon through the Splunk Deployment Sever☆31Updated 4 years ago
- PowerShell Script for Windows Server Compliance / Security Configuration Audit☆62Updated 8 years ago
- Invoke-LiveResponse☆148Updated 3 years ago
- Powering Up Incident Response with Power-Response☆63Updated 5 years ago
- Ansible playbook to convert Sigma rules to ElastAlert rules☆10Updated 4 years ago
- Repository for SPEED SIEM Use Case Framework☆55Updated 5 years ago
- ☆35Updated 4 years ago
- Azure Sentinel Template parser☆16Updated 4 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆45Updated 3 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆110Updated 5 years ago
- ☆49Updated 5 years ago
- ☆15Updated 8 years ago
- Sysmon configuration☆65Updated 6 years ago
- To parse ugly Microsoft DNS Logs....☆41Updated 7 years ago
- Collection of useful, up to date, Carbon Black Response Queries☆83Updated 4 years ago