A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
☆39Jun 8, 2020Updated 5 years ago
Alternatives and similar repositories for sigWah
Users that are interested in sigWah are comparing it to the libraries listed below
Sorting:
- Convert Sigma rules to Wazuh rules☆74Sep 13, 2025Updated 5 months ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Jul 21, 2020Updated 5 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19May 11, 2021Updated 4 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆96Apr 13, 2022Updated 3 years ago
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆11Jun 20, 2020Updated 5 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆72Jul 21, 2021Updated 4 years ago
- Wazuh REST API in Go☆16Dec 15, 2023Updated 2 years ago
- Tools to integrate 2 great security tools OPNsense and Wazuh☆31Aug 26, 2021Updated 4 years ago
- Django middleware and signals for handling security events☆13Apr 14, 2021Updated 4 years ago
- Tools for Wazuh by Juan C. Tello☆15Jan 13, 2022Updated 4 years ago
- Our collection of Wazuh detection rules for our Offense Lab☆18Feb 13, 2022Updated 4 years ago
- PowerShell scripts for fast Windows Event Collector configuration with Palantir toolset☆22May 21, 2022Updated 3 years ago
- ☆41Aug 26, 2023Updated 2 years ago
- ☆20Oct 17, 2021Updated 4 years ago
- Wazuh - Chef cookbooks☆24Jul 26, 2023Updated 2 years ago
- This is a python tool aiming to make using TheHive webhooks easier.☆28Oct 23, 2020Updated 5 years ago
- ☆19Oct 23, 2020Updated 5 years ago
- Wazuh - Puppet module☆53Feb 20, 2026Updated 2 weeks ago
- ☆20Jan 20, 2023Updated 3 years ago
- Python script to automatically create sigma rules from The hive observables☆25Mar 17, 2019Updated 6 years ago
- ☆28Oct 11, 2025Updated 4 months ago
- Wazuh prometheus exporter☆35Jul 4, 2025Updated 8 months ago
- Security checks for your researches☆34Nov 22, 2020Updated 5 years ago
- ☆35Dec 9, 2023Updated 2 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆159Mar 10, 2025Updated 11 months ago
- Sigma Detection Rule Repository☆92Jun 18, 2020Updated 5 years ago
- Script to output Azure IAM permissions and flag any explicit/owner permissions for review☆10May 18, 2020Updated 5 years ago
- Kills connections by process ID☆11Oct 21, 2018Updated 7 years ago
- Sample queries for Advanced hunting in Windows Defender ATP☆11Apr 22, 2020Updated 5 years ago
- ☆10Nov 19, 2015Updated 10 years ago
- PyCon Italia Beginners' Day Workshop☆10Jun 9, 2022Updated 3 years ago
- Provides a Learning Tools Interoperability (LTI) integration for creating WordPress blogs with appropriate user roles based on roles set …☆12Mar 17, 2025Updated 11 months ago
- A scanner for DKIM selectors.☆12Nov 5, 2018Updated 7 years ago
- Research into Undocumented Behavior of Azure AD Refresh Tokens☆13Oct 27, 2023Updated 2 years ago
- Scrapes Router Passwords From http://www.routerpasswords.com ,more then +300 product☆47Jan 4, 2018Updated 8 years ago
- Scan Apple SUCatalogs and Extract Build Numbers☆13Jan 9, 2020Updated 6 years ago
- Looks up details on a public IPV4 address against ip-info and blacklist-search sites. Providing a reputation check.☆11Oct 16, 2021Updated 4 years ago
- My custom kali live build configuration☆10Jan 29, 2021Updated 5 years ago
- Decentralized, censorship resistant, youtube clone for blockchain video publishing build using ethereum, node.js, react.js, solidity, IPF…☆12May 25, 2021Updated 4 years ago