tacosaure / magic-qradarLinks
Powershell script to query IBM Qradar SIEM and to generate KPI
☆9Updated 2 years ago
Alternatives and similar repositories for magic-qradar
Users that are interested in magic-qradar are comparing it to the libraries listed below
Sorting:
- Import CrowdStrike Threat Intelligence into your instance of MISP☆47Updated 2 weeks ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 3 years ago
- Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.☆82Updated last month
- Convert Sigma rules to LogRhythm searches☆21Updated 3 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆53Updated 2 years ago
- MISP to Sentinel integration☆68Updated last week
- Run Velociraptor on Security Onion☆38Updated 2 years ago
- This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defense…☆71Updated 3 years ago
- Scripts to automatically import threat intel into QRadar☆12Updated 6 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆66Updated 3 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆70Updated 2 years ago
- Stand-Alone Windows Hardening (SAWH) is a script to reduce the attack surface of Windows systems that are not attached to a Windows Activ…☆53Updated 3 years ago
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆56Updated last month
- This repository contains Splunk queries to hunt some anomalies☆43Updated 2 years ago
- ☆72Updated 8 months ago
- ☆45Updated 2 years ago
- A PowerShell incident response script for quick triage☆80Updated 2 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- ☆54Updated 4 years ago
- YARA, SIGMA, SNORT Rules based on Malware Analysis☆16Updated 2 months ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- SigmaHQ pySigma CrowdStrike processing pipeline☆26Updated 8 months ago
- User Feedback Space of #MitreAssistant☆37Updated 2 years ago
- ☆77Updated 6 years ago
- ☆17Updated 2 years ago
- A curated list of KAPE-related resources☆169Updated last month
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆44Updated last year
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆114Updated last year
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆27Updated 4 years ago
- ☆59Updated 2 years ago