Alternatives and similar repositories for graylog-plugin-alert-wizard:

Users that are interested in graylog-plugin-alert-wizard are comparing it to the libraries listed below

• airbus-cyber / graylog-plugin-logging-alert
  Alert notification plugin for Graylog to generate log messages from alerts
  ☆25Updated 2 weeks ago
• airbus-cyber / graylog-plugin-correlation-count
  Alert condition plugin for Graylog to perform correlation
  ☆25Updated 4 months ago
• airbus-cyber / graylog-plugin-aggregation-count
  Alert condition plugin for Graylog to perform aggregation
  ☆20Updated 2 years ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆65Updated 3 years ago
• enotspe / fortinet-2-elasticsearch
  Fortinet products logs to Elasticsearch
  ☆98Updated 8 months ago
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆53Updated 7 months ago
• HKcyberstark / wazuh-ecs
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆27Updated 4 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆64Updated last year
• StamusNetworks / KTS7
  Kibana 7 Templates for Suricata IDPS Threat Hunting
  ☆40Updated 2 years ago
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 3 years ago
• sophos / Sophos-Central-SIEM-Integration
  Simple integration script for 3rd party systems such as SIEMs. Offers command line, file or syslog output in CEF, JSON or key-value pair …
  ☆131Updated last year
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated last year
• elastic / security-action-examples
  This repository contains a few examples of actions that can be added to rules within Elastic Security.
  ☆22Updated 3 months ago
• counteractive / o365beat
  Elastic Beat for fetching and shipping Office 365 audit events
  ☆67Updated 4 years ago
• elastic / ecs-mapper
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆54Updated 3 years ago
• Cargill / OpenSIEM-Logstash-Parsing
  SIEM Logstash parsing for more than hundred technologies
  ☆184Updated 2 weeks ago
• IBM / wincollect
  ☆58Updated last year
• Graylog2 / graylog-plugin-threatintel
  Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
  ☆153Updated last year
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆53Updated last week
• reighnman / Graylog_Content_Pack_Active_Directory_Auditing
  ☆35Updated last year
• opc40772 / suricata-graylog
  ☆23Updated 5 years ago
• sophos / sophos-central-api-connector
  Leverage Sophos Central API
  ☆27Updated last year
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated last week
• TheHive-Project / awesome
  A curated list of awesome things related to TheHive & Cortex
  ☆178Updated 3 years ago
• OpenSecureCo / Wazuh
  ☆31Updated 3 years ago
• josh-morin / qradar
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆82Updated last month
• OwlH-net / OwlH-Master
  OwlH Master API
  ☆24Updated last week
• shadow-box / Palo-Alto-Networks-ELK-Stack
  Configuration for a Palo Alto Networks fed ELK Stack with Visualizations
  ☆73Updated 6 years ago
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆149Updated last month
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆104Updated 11 months ago