airbus-cyber / graylog-plugin-alert-wizardLinks
Alert Wizard plugin for Graylog to manage the alert rules
☆48Updated last week
Alternatives and similar repositories for graylog-plugin-alert-wizard
Users that are interested in graylog-plugin-alert-wizard are comparing it to the libraries listed below
Sorting:
- Alert notification plugin for Graylog to generate log messages from alerts☆25Updated 2 weeks ago
- Alert condition plugin for Graylog to perform correlation☆26Updated 2 weeks ago
- Alert condition plugin for Graylog to perform aggregation☆20Updated 2 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆66Updated 3 years ago
- Wazuh - Splunk App☆55Updated 9 months ago
- Kibana 7 Templates for Suricata IDPS Threat Hunting☆41Updated 2 years ago
- This repository contains a few examples of actions that can be added to rules within Elastic Security.☆22Updated 4 months ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- Fortinet products logs to Elasticsearch☆98Updated 3 weeks ago
- ☆23Updated 5 years ago
- Useful scripts for those administering Wazuh☆84Updated last week
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago
- Convert Sigma rules to Wazuh rules☆67Updated last year
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated 2 months ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- Elastic Beat for fetching and shipping Office 365 audit events☆67Updated 4 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆93Updated 3 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆33Updated 5 years ago
- Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.☆82Updated last month
- Configuration for a Palo Alto Networks fed ELK Stack with Visualizations☆73Updated 6 years ago
- Read only mirror. To contribute or submit issues, please go to the website link --->☆13Updated last year
- SIEM Logstash parsing for more than hundred technologies☆185Updated last week
- GrayLog2 QuickValuesPlus Widget☆22Updated 6 years ago
- Cisco eStreamer client☆24Updated 2 years ago
- ☆31Updated 3 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆151Updated 3 months ago
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆54Updated 3 years ago
- Simple integration script for 3rd party systems such as SIEMs. Offers command line, file or syslog output in CEF, JSON or key-value pair …☆134Updated last year