misje / opencti-wazuh-connector
OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
☆13Updated last month
Related projects: ⓘ
- Convert Sigma rules to Wazuh rules☆55Updated 5 months ago
- ☆32Updated last year
- ☆14Updated last year
- Useful scripts for those administering Wazuh☆68Updated 3 weeks ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆82Updated this week
- Personal scripts☆12Updated last week
- Tools for Wazuh by Juan C. Tello☆14Updated 2 years ago
- ☆19Updated this week
- ☆47Updated last week
- Controls Assessment Specification☆65Updated 3 months ago
- ☆17Updated 2 years ago
- Docker image for MISP☆109Updated last week
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆83Updated 2 years ago
- Wazuh integration to send alerts to IRIS.☆14Updated 4 months ago
- ☆17Updated 2 years ago
- Wazuh extension looking up alert data against indicators in OpenCTI threat intel☆17Updated 7 months ago
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆33Updated 4 years ago
- A tool that allows you to document and assess any security automation in your SOC☆40Updated 4 months ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆60Updated 3 years ago
- Notes for High Availability MISP in AWS☆18Updated 4 years ago
- Terraform scripts for deploying OpenCTI to AWS, Azure, and GCP☆29Updated 5 months ago
- Osquery Packs we use for customer security hardening☆12Updated 6 months ago
- Run Velociraptor on Security Onion☆34Updated 2 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆47Updated 2 months ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆112Updated 2 months ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- The Cyber Security Platform MeliCERTes is part of the European Strategy for Cyber Security. MeliCERTes is a network for establishing conf…☆30Updated 2 years ago
- ☆62Updated this week
- ☆63Updated last month