theflakes / sigma_to_wazuhLinks
Convert Sigma rules to Wazuh rules
☆67Updated last year
Alternatives and similar repositories for sigma_to_wazuh
Users that are interested in sigma_to_wazuh are comparing it to the libraries listed below
Sorting:
- SIEGMA - Transform Sigma rules into SIEM consumables☆153Updated 4 months ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- Threat Hunting & Incident Investigation with Osquery☆213Updated 3 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated 2 weeks ago
- Docker image for Velocidex Velociraptor☆131Updated 4 months ago
- Run Velociraptor on Security Onion☆39Updated 3 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆68Updated 4 years ago
- ☆86Updated 4 months ago
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆111Updated 2 years ago
- Docker image for MISP☆132Updated last month
- Dettectinator - The Python library to your DeTT&CT YAML files.☆115Updated 3 months ago
- ☆37Updated last year
- Repository for SPEED SIEM Use Case Framework☆56Updated 5 years ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆155Updated 5 months ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆164Updated last year
- Resources To Learn And Understand SIGMA Rules☆180Updated 2 years ago
- A collection of tips for using MISP.☆74Updated 7 months ago
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆33Updated 5 years ago
- The Sigma command line interface based on pySigma☆158Updated 3 months ago
- Rules generated from our investigations.☆196Updated last month
- OSSEM Detection Model☆176Updated 2 years ago
- An opensource sigma conversion tool built using pysigma☆132Updated last month
- These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.☆55Updated 6 years ago
- A curated list of awesome things related to TheHive & Cortex☆183Updated 3 years ago
- Powershell module for VMWare vSphere forensics☆153Updated 8 months ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆66Updated last year
- A repository of my own Sigma detection rules.☆160Updated 10 months ago
- Standard-Format Threat Intelligence Feeds☆121Updated this week
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆204Updated 3 years ago