sophos / sophos-central-api-connectorLinks
Leverage Sophos Central API
☆30Updated 2 years ago
Alternatives and similar repositories for sophos-central-api-connector
Users that are interested in sophos-central-api-connector are comparing it to the libraries listed below
Sorting:
- ☆87Updated 7 months ago
- Run zeek with zeekctl in docker☆55Updated last year
- Run Velociraptor on Security Onion☆40Updated 3 years ago
- Convert Sigma rules to Wazuh rules☆73Updated last month
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆70Updated 4 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆157Updated 7 months ago
- ☆58Updated last month
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆76Updated 2 weeks ago
- A curated list of awesome things related to TheHive & Cortex☆182Updated 4 years ago
- Elastic Beat for fetching and shipping Office 365 audit events☆68Updated 5 years ago
- Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…☆226Updated 8 months ago
- Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.☆86Updated 5 months ago
- Real-time Response scripts and schema☆119Updated last week
- PowerShell module for Office 365 and Azure log collection☆275Updated last month
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated last month
- The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…☆264Updated 4 years ago
- ☆15Updated 2 months ago
- ☆80Updated last year
- Simple integration script for 3rd party systems such as SIEMs. Offers command line, file or syslog output in CEF, JSON or key-value pair …☆138Updated 2 years ago
- A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.☆288Updated 4 years ago
- LogRhythm PowerShell Toolkit☆51Updated 2 months ago
- Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana☆299Updated this week
- The Infosec Community Definitive Guide to Jupyter Notebooks☆126Updated 5 years ago
- ATT&CK Remote Threat Hunting Incident Response☆204Updated 10 months ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆127Updated 2 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated 2 years ago
- Docker image for Velocidex Velociraptor☆138Updated 7 months ago
- The FASTEST way to consume threat intel.☆69Updated 2 years ago
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆205Updated 5 years ago