Alternatives and similar repositories for wazuh-opencti

Users that are interested in wazuh-opencti are comparing it to the libraries listed below

• juaromu / wazuh-opencti
  ☆35Updated last year
• dariommr / scripts
  Personal scripts
  ☆15Updated 9 months ago
• misje / opencti-wazuh-connector
  OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
  ☆18Updated 10 months ago
• juaromu / wazuh
  ☆19Updated 3 years ago
• juaromu / wazuh-misp
  ☆17Updated 2 years ago
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆29Updated 9 months ago
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆128Updated 3 months ago
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆39Updated 3 years ago
• nateuribe / Wazuh-IRIS-integration
  (Unofficial) Wazuh integration to send alerts to IRIS.
  ☆17Updated 5 months ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆66Updated 3 years ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆44Updated last year
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆68Updated last week
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆66Updated last year
• crow1011 / wazuh2thehive
  Wazuh integration TheHive
  ☆36Updated 2 years ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆203Updated last week
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆67Updated last year
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆47Updated 2 weeks ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 6 months ago
• josh-morin / qradar
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆82Updated last month
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆128Updated 11 months ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆93Updated 3 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆67Updated last year
• acquiredsecurity / Sentinel-One-STAR-Rules-Threat-Hunts
  SentinelOne STAR Rules
  ☆62Updated 4 months ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆38Updated 2 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆70Updated 2 years ago
• juaromu / wazuh-domain-stats-alienvault
  ☆16Updated 3 years ago
• quitehacker / MITRE-ATTACK-Enterprise-Matrix-in-Excel-for-SOC
  The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…
  ☆26Updated 5 months ago
• typosquatter / ail-typo-website
  Website for ail-typo-squatting library
  ☆60Updated last year
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆34Updated 2 months ago
• docintelapp / DocIntel
  Open Source Platform for storing, organizing, and searching documents related to cyber threats
  ☆165Updated last year