fortinet-fortisoar / solution-pack-soar-frameworkLinks
☆14Updated this week
Alternatives and similar repositories for solution-pack-soar-framework
Users that are interested in solution-pack-soar-framework are comparing it to the libraries listed below
Sorting:
- Python scripts for reviewing Palo Alto Firewall configurations☆35Updated 7 months ago
- Standard-Format Threat Intelligence Feeds☆127Updated this week
- This script provides a Python library with methods to authenticate to various sources of threat intelligence and query IPs for the latest…☆18Updated 11 months ago
- ☆15Updated last month
- Run Velociraptor on Security Onion☆40Updated 3 years ago
- ☆21Updated 4 years ago
- ☆17Updated 6 years ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 4 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆71Updated 4 years ago
- Converts Fortigate log exports into CSV☆49Updated 2 months ago
- Repository for SPEED SIEM Use Case Framework☆59Updated 5 years ago
- Really can protect from ransomware encryption?☆47Updated last year
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆38Updated 5 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆95Updated 3 years ago
- A simple script to extract policies from a FortiGate configuration file to CSV☆142Updated 2 years ago
- Convert Sigma rules to Wazuh rules☆73Updated 4 months ago
- Active Directory Purple Team Playbook☆115Updated 2 years ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆93Updated 4 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆79Updated last week
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆158Updated 4 years ago
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆127Updated 2 years ago
- Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…☆122Updated 8 months ago
- A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.☆292Updated 4 years ago
- Cheat sheets for threat hunting, detection and other stuff.☆34Updated 3 years ago
- Convert snort IPS signatures to FortiGate custom IPS signature syntax.☆41Updated last year
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆37Updated 3 years ago
- Pushes Sysmon Configs☆90Updated 4 years ago
- Random tips and tricks RE: ransomware☆14Updated 4 years ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆128Updated 10 months ago
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆40Updated 4 years ago