veeral-patel / true-positive
Collaborative, web-based case management for incident response
☆19Updated 7 months ago
Related projects: ⓘ
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆82Updated this week
- Please use https://github.com/veeral-patel/true-positive instead☆65Updated last year
- Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.☆44Updated 4 years ago
- ☆19Updated this week
- Workflows for Shuffle☆20Updated last year
- Incident Response Network Tools☆22Updated 3 years ago
- This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler☆12Updated 3 years ago
- Osquery Packs we use for customer security hardening☆12Updated 6 months ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆51Updated 3 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆51Updated 2 months ago
- This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup…☆15Updated 4 years ago
- An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.☆16Updated 2 years ago
- Convert Sigma rules to Wazuh rules☆55Updated 5 months ago
- ☆15Updated this week
- The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teams☆58Updated 4 years ago
- ☆29Updated 3 years ago
- A collection of tips for using MISP.☆74Updated 5 months ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆30Updated 2 years ago
- ☆14Updated 4 years ago
- Tools for Wazuh by Juan C. Tello☆14Updated 2 years ago
- Notes on managing and coordinating the response to major cyber incidents☆38Updated 4 years ago
- Sample programs to access the API☆57Updated 2 months ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆49Updated 2 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- Incident Response Plan for all major incidents including cheatsheets for both linux and windows☆13Updated 4 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- Documentation used for Shuffle☆18Updated this week
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- An open source platform to support analysts to organise their case and tasks☆49Updated 2 weeks ago
- OwlH Master API Web User Interface☆12Updated 4 months ago