misje / opencti-wazuh-connector
OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
☆16Updated 7 months ago
Alternatives and similar repositories for opencti-wazuh-connector:
Users that are interested in opencti-wazuh-connector are comparing it to the libraries listed below
- ☆33Updated last year
- ☆15Updated 2 years ago
- Wazuh extension looking up alert data against indicators in OpenCTI threat intel☆18Updated last year
- Convert Sigma rules to Wazuh rules☆63Updated 10 months ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆69Updated last week
- ☆18Updated 3 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆64Updated 3 years ago
- Useful scripts for those administering Wazuh☆80Updated 2 months ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆91Updated 2 years ago
- Personal scripts☆12Updated 6 months ago
- Docker image for MISP☆123Updated last month
- A curated list of awesome things related to TheHive & Cortex☆177Updated 3 years ago
- (Unofficial) Wazuh integration to send alerts to IRIS.☆17Updated 2 months ago
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆33Updated 4 years ago
- A production ready Dockered MISP☆210Updated this week
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆85Updated 3 months ago
- Docker image for Velocidex Velociraptor☆120Updated last week
- ☆17Updated 3 years ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆109Updated 2 months ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆149Updated this week
- A collection of tips for using MISP.☆74Updated 3 months ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated last month
- Tools for Wazuh by Juan C. Tello☆14Updated 3 years ago
- Terraform scripts for deploying OpenCTI to AWS, Azure, and GCP☆31Updated 11 months ago
- ☆68Updated 6 months ago
- Resources To Learn And Understand SIGMA Rules☆173Updated 2 years ago
- OpenCTI Docker deployment helpers☆176Updated this week
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆122Updated 7 months ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆44Updated this week
- Wazuh integration TheHive☆34Updated 2 years ago