stahler / QRadar
Using QRadar API
☆20Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for QRadar
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 2 years ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆26Updated 4 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- Expert Investigation Guides☆50Updated 3 years ago
- A script to create and assign SOP tasks into the cases☆18Updated 4 years ago
- Volatility plugins developed and maintained by the community☆21Updated 2 months ago
- incident response scripts☆18Updated 5 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆52Updated 2 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- ☆77Updated 5 years ago
- ☆34Updated 3 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- ☆14Updated 4 years ago
- Library of threat hunts to get any user started!☆40Updated 4 years ago
- ☆34Updated 3 years ago
- Convert Sigma rules to LogRhythm searches☆19Updated 2 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆50Updated 2 years ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 3 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆44Updated 2 years ago
- Repository for SPEED SIEM Use Case Framework☆52Updated 4 years ago
- Sharing Threat Hunting runbooks☆24Updated 5 years ago
- Pulls IOCs from MISP and adds the to reference sets in QRadar☆33Updated last year
- ☆13Updated 2 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Incident Response Network Tools☆23Updated 3 years ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆58Updated last year
- Workflows for Shuffle☆20Updated 2 years ago
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Updated 4 years ago
- automate your MISP installs☆66Updated 4 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 3 years ago