misje / opencti-wazuh-connector
OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
☆16Updated 7 months ago
Alternatives and similar repositories for opencti-wazuh-connector:
Users that are interested in opencti-wazuh-connector are comparing it to the libraries listed below
- ☆33Updated last year
- Wazuh extension looking up alert data against indicators in OpenCTI threat intel☆18Updated last year
- (Unofficial) Wazuh integration to send alerts to IRIS.☆17Updated 2 months ago
- ☆15Updated 2 years ago
- Convert Sigma rules to Wazuh rules☆64Updated 11 months ago
- Docker image for MISP☆123Updated 2 months ago
- Tools for Wazuh by Juan C. Tello☆14Updated 3 years ago
- Wazuh integration TheHive☆35Updated 2 years ago
- Personal scripts☆13Updated 6 months ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆91Updated 2 years ago
- Docker image for Velocidex Velociraptor☆122Updated 2 weeks ago
- ☆19Updated 3 years ago
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- Useful scripts for those administering Wazuh☆80Updated 2 months ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆119Updated 2 years ago
- Repo Filled With Follow Along Guides☆74Updated 2 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆149Updated last week
- Resources To Learn And Understand SIGMA Rules☆173Updated 2 years ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆69Updated this week
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆107Updated 2 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated last month
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆33Updated 4 years ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆85Updated 3 months ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆109Updated 2 months ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆64Updated 3 years ago
- A curated list of awesome things related to TheHive & Cortex☆177Updated 3 years ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆122Updated 8 months ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆44Updated last week
- A collection of tips for using MISP.☆74Updated 3 months ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆51Updated 2 years ago