jctello / JCT-WazuhLinks
Tools for Wazuh by Juan C. Tello
☆14Updated 3 years ago
Alternatives and similar repositories for JCT-Wazuh
Users that are interested in JCT-Wazuh are comparing it to the libraries listed below
Sorting:
- Personal scripts☆15Updated last year
- ☆19Updated 3 years ago
- ☆17Updated 3 years ago
- OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings☆18Updated last year
- Wazuh integration TheHive☆38Updated 2 years ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 4 years ago
- Osquery Packs we use for customer security hardening☆12Updated 2 months ago
- The official Prelude SIEM GitHub of https://www.prelude-siem.org☆33Updated 9 years ago
- ☆18Updated 2 years ago
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆51Updated 8 months ago
- A collection of tips for using MISP.☆74Updated 9 months ago
- ☆16Updated 3 years ago
- Extracting IoC data from eMail☆138Updated last month
- Workflows for Shuffle☆23Updated 2 years ago
- Website for ail-typo-squatting library☆63Updated last year
- Convert Sigma rules to Wazuh rules☆67Updated last year
- Sample programs to access the API☆91Updated 4 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆46Updated last year
- AIL project training materials☆35Updated last month
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆68Updated 4 years ago
- ☆90Updated last month
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- ☆37Updated 2 years ago
- Useful scripts for those administering Wazuh☆85Updated 2 months ago
- ☆53Updated 3 years ago
- ☆50Updated last week
- ☆119Updated last year
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- Import CrowdStrike Threat Intelligence into your instance of MISP☆48Updated 3 months ago