misje / wazuh-openctiLinks
Wazuh extension looking up alert data against indicators in OpenCTI threat intel
☆21Updated last year
Alternatives and similar repositories for wazuh-opencti
Users that are interested in wazuh-opencti are comparing it to the libraries listed below
Sorting:
- ☆37Updated 2 years ago
- Personal scripts☆15Updated 11 months ago
- ☆19Updated 3 years ago
- OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings☆18Updated last year
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆29Updated 11 months ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆48Updated 2 months ago
- A collection of various SIEM rules relating to malware family groups.☆69Updated last year
- Practical Threat Detection Engineering, Published by Packt☆76Updated 2 years ago
- ☆17Updated 2 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆46Updated last year
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated last year
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆68Updated 4 years ago
- Newly registered Domain Monitoring to detect phishing and brand impersonation with subdomain enumeration and source code scraping☆53Updated last month
- Website for ail-typo-squatting library☆63Updated last year
- MISP Playbooks☆207Updated 2 months ago
- Collection of Dashboards for Threat Hunting and more!☆68Updated 4 years ago
- A collection of tips for using MISP.☆74Updated 8 months ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆156Updated 6 months ago
- Convert Sigma rules to Wazuh rules☆67Updated last year
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆28Updated 8 months ago
- Cheat sheets for threat hunting, detection and other stuff.☆34Updated 2 years ago
- Extracts IoCs, TTPs and the relationships between them. Outputs a STIX 2.1 bundle.☆66Updated this week
- ☆52Updated last year
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆112Updated 2 years ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆165Updated last year
- MISP to Sentinel integration☆71Updated last week
- A repository of my own Sigma detection rules.☆160Updated 11 months ago
- ☆94Updated 3 weeks ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆73Updated 2 years ago
- An opensource sigma conversion tool built using pysigma☆132Updated this week