misje / opencti-wazuh-connectorLinks
OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
☆18Updated last year
Alternatives and similar repositories for opencti-wazuh-connector
Users that are interested in opencti-wazuh-connector are comparing it to the libraries listed below
Sorting:
- ☆37Updated 2 years ago
- Wazuh extension looking up alert data against indicators in OpenCTI threat intel☆21Updated last year
- ☆19Updated 3 years ago
- Personal scripts☆15Updated 11 months ago
- Useful scripts for those administering Wazuh☆85Updated 2 months ago
- Tools for Wazuh by Juan C. Tello☆14Updated 3 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago
- ☆17Updated 2 years ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated last year
- Wazuh integration TheHive☆38Updated 2 years ago
- Convert Sigma rules to Wazuh rules☆67Updated last year
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆68Updated 4 years ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆76Updated last week
- The official Prelude SIEM GitHub of https://www.prelude-siem.org☆33Updated 9 years ago
- Apps to be used for Shuffle automation. Most of Shuffle's apps (2500+) are generated from APIs, and available in the search engine below:☆116Updated last week
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆112Updated 2 years ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆156Updated 6 months ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆48Updated 2 months ago
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆51Updated 7 months ago
- A collection of awesome tools, software, libraries, learning tutorials & videos, frameworks, best practices and technical resources abou…☆56Updated 2 years ago
- ☆16Updated 3 years ago
- Website for ail-typo-squatting library☆63Updated last year
- Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch …☆167Updated last year
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 4 years ago
- Automation tool for Windows Deception Host Burn-In☆86Updated 8 months ago
- Mapping of open-source detection rules and atomic tests.☆175Updated 7 months ago
- ☆94Updated 3 weeks ago
- ☆17Updated 3 years ago
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆226Updated last week