misje / wazuh-opencti
Wazuh extension looking up alert data against indicators in OpenCTI threat intel
☆17Updated 7 months ago
Related projects: ⓘ
- ☆32Updated last year
- Playbooks for SOC Analysts☆119Updated last year
- A production ready Dockered MISP☆138Updated this week
- ☆30Updated 2 years ago
- Convert Sigma rules to Wazuh rules☆55Updated 5 months ago
- SOCFortress CoPilot☆188Updated this week
- Docker image for Velocidex Velociraptor☆112Updated 2 months ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆189Updated 10 months ago
- MISP Playbooks☆167Updated last month
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆21Updated last year
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆83Updated 2 years ago
- Docker image for MISP☆109Updated last week
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆154Updated 10 months ago
- ☆175Updated 4 months ago
- These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.☆50Updated 5 years ago
- MISP to Sentinel integration☆57Updated last week
- Personal scripts☆12Updated last week
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆96Updated 5 months ago
- Resources To Learn And Understand SIGMA Rules☆163Updated last year
- Repository of SentinelOne Deep Visibility queries.☆116Updated 3 years ago
- A list of Splunk queries that I've collected and used over time.☆70Updated 3 years ago
- OpenCTI Docker deployment helpers☆153Updated this week
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆73Updated 2 years ago
- Tools for simulating threats☆170Updated 10 months ago
- Repository of public reference frameworks for the DFIR community.☆105Updated last year
- ☆49Updated 4 months ago
- Windows Malware Investigation Scripts & Docs☆74Updated 6 months ago
- ☆24Updated 10 months ago
- SentinelOne STAR Rules☆45Updated 10 months ago
- Run Velociraptor on Security Onion☆34Updated 2 years ago