socfortress / wazuh-mcp-serverLinks
Repo to hold wazuh manager mcp server
☆24Updated this week
Alternatives and similar repositories for wazuh-mcp-server
Users that are interested in wazuh-mcp-server are comparing it to the libraries listed below
Sorting:
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆51Updated 6 months ago
- Mapping of open-source detection rules and atomic tests.☆169Updated 5 months ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated 11 months ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆77Updated last month
- Interactive simulation of a fictional ransomware group's dashboard☆12Updated 9 months ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆170Updated 5 months ago
- Newly registered Domain Monitoring to detect phishing and brand impersonation with subdomain enumeration and source code scraping☆52Updated last week
- A web application that allows the users to check whether their SPF, DMARC and DKIM configuration is set up correctly.☆143Updated last week
- An index of publicly available and open-source threat detection rulesets.☆118Updated 2 months ago
- ☆108Updated last month
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆76Updated 2 months ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆29Updated 9 months ago
- YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection☆81Updated 3 weeks ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆155Updated 3 months ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆91Updated this week
- ThreatSeeker: Threat Hunting via Windows Event Logs☆121Updated 2 years ago
- ☆74Updated 2 weeks ago
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆104Updated this week
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆135Updated last week
- Knowledge base on cybercriminal concealment techniques☆72Updated 2 months ago
- NOVA: The Prompt Pattern Matching☆128Updated 2 months ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆51Updated 8 months ago
- ☆73Updated 3 months ago
- ☆92Updated 2 months ago
- Analyze pcaps with Zeek and a Grafana Dashboard☆178Updated last year
- VirtualGHOST Detection Tool☆91Updated last year
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆165Updated 9 months ago
- An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.☆193Updated last year
- A library of Incident Response notebooks using Jupyter. We will show how you can leverage pre-defined notebook files to guide your incide…☆147Updated last year
- Halberd : Multi-Cloud Agentic Attack Tool☆295Updated 2 weeks ago