misje / opencti-wazuh-connectorLinks
OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
☆18Updated 10 months ago
Alternatives and similar repositories for opencti-wazuh-connector
Users that are interested in opencti-wazuh-connector are comparing it to the libraries listed below
Sorting:
- ☆35Updated last year
- ☆17Updated 2 years ago
- Personal scripts☆15Updated 9 months ago
- ☆19Updated 3 years ago
- Wazuh extension looking up alert data against indicators in OpenCTI threat intel☆20Updated last year
- (Unofficial) Wazuh integration to send alerts to IRIS.☆17Updated 5 months ago
- ☆16Updated 3 years ago
- Tools for Wazuh by Juan C. Tello☆14Updated 3 years ago
- ☆17Updated 3 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆66Updated 3 years ago
- Convert Sigma rules to Wazuh rules☆67Updated last year
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated 11 months ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆29Updated 9 months ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆93Updated 3 years ago
- Terraform scripts for deploying OpenCTI to AWS, Azure, and GCP☆31Updated last year
- Useful scripts for those administering Wazuh☆84Updated 2 weeks ago
- Run Velociraptor on Security Onion☆38Updated 2 years ago
- Wazuh integration TheHive☆36Updated 2 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 3 years ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆47Updated 2 weeks ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆44Updated last year
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆109Updated 2 years ago
- ☆48Updated 3 weeks ago
- OpenCTI Docker deployment helpers☆186Updated this week
- Threat Detection & Anomaly Detection rules for popular open-source components☆52Updated 2 years ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆76Updated this week
- Scripts to deploy and update MISP in air-gapped environments☆17Updated 3 months ago
- ☆55Updated this week
- Web based S1 query navigator for one-click threat hunting☆19Updated 4 years ago
- Docker image for Velocidex Velociraptor☆128Updated 3 months ago