sophos / sophos-central-api-connectorLinks
Leverage Sophos Central API
☆29Updated 2 years ago
Alternatives and similar repositories for sophos-central-api-connector
Users that are interested in sophos-central-api-connector are comparing it to the libraries listed below
Sorting:
- LogRhythm PowerShell Toolkit☆51Updated last month
- A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.☆287Updated 4 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆70Updated 4 years ago
- ☆87Updated 7 months ago
- Run zeek with zeekctl in docker☆55Updated last year
- Convert Sigma rules to Wazuh rules☆73Updated 3 weeks ago
- Run Velociraptor on Security Onion☆40Updated 3 years ago
- The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…☆261Updated 4 years ago
- Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana☆299Updated this week
- Real-time Response scripts and schema☆118Updated last year
- Simple integration script for 3rd party systems such as SIEMs. Offers command line, file or syslog output in CEF, JSON or key-value pair …☆137Updated 2 years ago
- ☆58Updated 3 weeks ago
- Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…☆225Updated 8 months ago
- Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.☆84Updated 5 months ago
- A list of my personal projects☆177Updated 3 years ago
- Passive service locator, a python sniffer that identifies servers, clients, names and much more☆254Updated 2 years ago
- ☆80Updated last year
- Zeek Log Cheatsheets☆298Updated last month
- ☆15Updated last month
- Useful network monitoring, analysis, and active response tools used or mentioned in the SANS SEC503 course (https://www.sans.org/course/i…☆241Updated 9 months ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆156Updated 6 months ago
- Search a filesystem for indicators of compromise (IoC).☆81Updated 2 weeks ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆74Updated 2 weeks ago
- Building environments to replicate small networks and deploy applications☆326Updated 8 months ago
- Docker image for MISP☆134Updated last month
- A curated list of awesome things related to TheHive & Cortex☆183Updated 4 years ago
- Collection of PowerShell functinos and scripts a Blue Teamer might use☆84Updated 2 years ago
- ATT&CK Remote Threat Hunting Incident Response☆204Updated 10 months ago
- PowerShell module for Office 365 and Azure log collection☆275Updated 2 weeks ago
- ☆32Updated 3 years ago