misje / opencti-wazuh-connectorLinks
OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
☆18Updated 11 months ago
Alternatives and similar repositories for opencti-wazuh-connector
Users that are interested in opencti-wazuh-connector are comparing it to the libraries listed below
Sorting:
- ☆37Updated last year
- Wazuh extension looking up alert data against indicators in OpenCTI threat intel☆20Updated last year
- ☆19Updated 3 years ago
- Useful scripts for those administering Wazuh☆84Updated last month
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated last year
- Personal scripts☆15Updated 10 months ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆68Updated 4 years ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago
- Tools for Wazuh by Juan C. Tello☆14Updated 3 years ago
- ☆16Updated 3 years ago
- ☆17Updated 2 years ago
- Convert Sigma rules to Wazuh rules☆67Updated last year
- Import CrowdStrike Threat Intelligence into your instance of MISP☆48Updated last month
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆155Updated 5 months ago
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆51Updated 7 months ago
- Wazuh integration TheHive☆38Updated 2 years ago
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆111Updated 2 years ago
- OpenCTI Docker deployment helpers☆198Updated last week
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆37Updated 8 months ago
- Apps to be used for Shuffle automation. Most of Shuffle's apps (2500+) are generated from APIs, and available in the search engine below:☆116Updated last week
- Dettectinator - The Python library to your DeTT&CT YAML files.☆115Updated 4 months ago
- The official Prelude SIEM GitHub of https://www.prelude-siem.org☆31Updated 9 years ago
- MISP Playbooks☆206Updated last month
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆76Updated this week
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆223Updated this week
- Repo Filled With Follow Along Guides☆79Updated 3 years ago
- ☆94Updated 2 months ago
- Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch …☆166Updated last year
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆29Updated 10 months ago