misje / wazuh-openctiLinks
Wazuh extension looking up alert data against indicators in OpenCTI threat intel
☆20Updated last year
Alternatives and similar repositories for wazuh-opencti
Users that are interested in wazuh-opencti are comparing it to the libraries listed below
Sorting:
- ☆35Updated last year
- Personal scripts☆15Updated 9 months ago
- OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings☆18Updated 10 months ago
- ☆19Updated 3 years ago
- ☆17Updated 2 years ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆29Updated 9 months ago
- Docker image for Velocidex Velociraptor☆128Updated 3 months ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 3 years ago
- (Unofficial) Wazuh integration to send alerts to IRIS.☆17Updated 5 months ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆66Updated 3 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆44Updated last year
- MISP to Sentinel integration☆68Updated last week
- A collection of various SIEM rules relating to malware family groups.☆66Updated last year
- Wazuh integration TheHive☆36Updated 2 years ago
- MISP Playbooks☆203Updated last week
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆67Updated last year
- Import CrowdStrike Threat Intelligence into your instance of MISP☆47Updated 2 weeks ago
- A collection of tips for using MISP.☆74Updated 6 months ago
- Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.☆82Updated last month
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated 11 months ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆93Updated 3 years ago
- Convert Sigma rules to Wazuh rules☆67Updated last year
- SentinelOne STAR Rules☆62Updated 4 months ago
- Run Velociraptor on Security Onion☆38Updated 2 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆70Updated 2 years ago
- ☆16Updated 3 years ago
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆26Updated 5 months ago
- Website for ail-typo-squatting library☆60Updated last year
- A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…☆34Updated 2 months ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆165Updated last year