cea-sec / openwec
An implementation of a Windows Event Collector server running on GNU/Linux.
☆51Updated this week
Related projects ⓘ
Alternatives and complementary repositories for openwec
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆37Updated 2 years ago
- gmsad manages Active Directory group Managed Service Account (gMSA) on Linux☆27Updated 2 weeks ago
- Osquery Resources☆59Updated 5 years ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆64Updated last week
- Anything Sysmon related from the MSTIC R&D team☆146Updated 5 months ago
- The core backend server handling API requests and task management☆31Updated 2 weeks ago
- A collection of tips for using MISP.☆74Updated 7 months ago
- Powershell module for VMWare vSphere forensics☆141Updated 2 weeks ago
- Cisco Orbital - Osquery queries by Talos☆123Updated 2 months ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆84Updated last week
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆89Updated last year
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆49Updated 3 weeks ago
- A pySigma wrapper to manage detection rules.☆29Updated last week
- Convert Sigma rules to Wazuh rules☆58Updated 7 months ago
- The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…☆44Updated this week
- Forensic Artifact Collection Tool Matrix☆75Updated last week
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆25Updated 8 months ago
- Pushes Sysmon Configs☆89Updated 3 years ago
- Red Canary's eBPF Sensor☆101Updated 4 months ago
- Alternative YARA scanning engine☆67Updated 2 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆68Updated last year
- Automated YARA Rule Standardization and Quality Assurance Tool☆166Updated this week
- pySigma Elasticsearch backend☆43Updated this week
- ☆31Updated last month
- MDE relies on some of the Audit settings to be enabled☆97Updated 2 years ago
- Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph☆37Updated last week
- Automatic detection engineering technical state compliance☆50Updated 4 months ago
- Algorithme d'apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements "Création de Processus", …☆78Updated 9 months ago
- Source code and examples for Antignis☆36Updated 2 years ago
- A tool that allows you to document and assess any security automation in your SOC☆41Updated 3 weeks ago