crow1011 / wazuh2thehiveLinks
Wazuh integration TheHive
☆35Updated 2 years ago
Alternatives and similar repositories for wazuh2thehive
Users that are interested in wazuh2thehive are comparing it to the libraries listed below
Sorting:
- ☆35Updated last year
- Convert Sigma rules to Wazuh rules☆67Updated last year
- ☆17Updated 2 years ago
- Run Velociraptor on Security Onion☆38Updated 2 years ago
- Useful scripts for those administering Wazuh☆84Updated last week
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆93Updated 3 years ago
- Personal scripts☆15Updated 9 months ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago
- ☆19Updated 3 years ago
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆33Updated 5 years ago
- ☆31Updated 3 years ago
- Docker image for MISP☆130Updated this week
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆44Updated last year
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆29Updated 8 months ago
- Tools for Wazuh by Juan C. Tello☆14Updated 3 years ago
- This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work.☆39Updated 3 years ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆76Updated this week
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆66Updated 3 years ago
- ☆120Updated last year
- This is a python tool aiming to make using TheHive webhooks easier.☆28Updated 4 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆151Updated 3 months ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated 2 months ago
- (Unofficial) Wazuh integration to send alerts to IRIS.☆17Updated 5 months ago
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆26Updated 5 months ago
- Workflows for Shuffle☆23Updated 2 years ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated 11 months ago
- Repository for SPEED SIEM Use Case Framework☆55Updated 5 years ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆64Updated last year
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆51Updated 7 months ago
- A tool that allows you to document and assess any security automation in your SOC☆46Updated 7 months ago