theflakes / StoWLinks
Sigma to Wazuh rule converter
☆17Updated 2 weeks ago
Alternatives and similar repositories for StoW
Users that are interested in StoW are comparing it to the libraries listed below
Sorting:
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆30Updated last year
- Personal scripts☆15Updated last year
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆112Updated 3 years ago
- Convert Sigma rules to Wazuh rules☆72Updated 3 weeks ago
- ☆17Updated 3 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆70Updated 4 years ago
- DShield Sensor Log Collection with ELK☆40Updated last week
- Finding ClickFix and FakeCAPTCHA like it's 1999☆61Updated last week
- Analyze pcaps with Zeek and a Grafana Dashboard☆185Updated last year
- ☆21Updated this week
- Useful scripts for those administering Wazuh☆86Updated last week
- Automation tool for Windows Deception Host Burn-In☆86Updated 10 months ago
- Security Monitoring using Wazuh, published by Packt☆29Updated last year
- Our collection of Wazuh detection rules for our Offense Lab☆16Updated 3 years ago
- Rapidly Search and Hunt through Linux Forensics Artifacts☆199Updated last year
- OpenAEV Docker deployment helpers☆23Updated last week
- Docker image for Velocidex Velociraptor☆137Updated 6 months ago
- ☆87Updated 6 months ago
- The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.☆49Updated 5 months ago
- ☆19Updated 3 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆73Updated 2 weeks ago
- Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…☆144Updated last week
- Threat Simulator for Enterprise Networks☆14Updated 3 years ago
- Mapping of open-source detection rules and atomic tests.☆177Updated 8 months ago
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆57Updated 2 months ago
- ☆41Updated 2 years ago
- An index of publicly available and open-source threat detection rulesets.☆125Updated 5 months ago
- Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.☆197Updated last month
- ☆94Updated 2 weeks ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆56Updated 3 months ago