wazuh / wazuh-rulesetLinks
Wazuh - Ruleset
☆448Updated 8 months ago
Alternatives and similar repositories for wazuh-ruleset
Users that are interested in wazuh-ruleset are comparing it to the libraries listed below
Sorting:
- Wazuh - Project documentation☆218Updated this week
- Plugins for Wazuh Dashboard☆467Updated this week
- A repository for using osquery for incident detection and response☆849Updated 2 years ago
- Scirius is a web application for Suricata ruleset management and threat hunting.☆651Updated 2 weeks ago
- Documentation of TheHive☆397Updated last year
- Create actionable data from your Vulnerability Scans☆1,381Updated 2 years ago
- Mapping the MITRE ATT&CK Matrix with Osquery☆794Updated 2 years ago
- Wazuh - RESTful API☆74Updated 8 months ago
- Phantom Community Playbooks☆501Updated 3 months ago
- Security event correlation engine for ELK stack☆439Updated 11 months ago
- MISP Docker (XME edition)☆282Updated last year
- Suricata IDS/IPS log analytics using the Elastic Stack.☆238Updated 3 years ago
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,429Updated 7 months ago
- A set of Zeek scripts to detect ATT&CK techniques.☆592Updated 11 months ago
- Python library using the MISP Rest API☆463Updated 2 weeks ago
- Zeek-Formatted Threat Intelligence Feeds☆365Updated this week
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆458Updated last week
- The Python SDK for AlienVault OTX☆375Updated last year
- Suricata, Snort and Zeek IDS rule and pcap testing system☆479Updated last week
- Documentation of Cortex☆174Updated last year
- Configuration files for the SOF-ELK VM☆1,590Updated 2 months ago
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆1,043Updated last week
- Pulled Pork for Snort and Suricata rule management (from Google code)☆434Updated 3 years ago
- Contains Logstash related content including tons of Logstash configurations☆253Updated 3 years ago
- Actionable analytics designed to combat threats☆986Updated 3 years ago
- Python API Client for TheHive☆226Updated this week
- Automated deployment scripts for the RockNSM network hunting distribution.☆453Updated last year
- Wazuh - Docker containers☆830Updated this week
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆792Updated 4 years ago
- An information security preparedness tool to do adversarial simulation.☆1,123Updated 6 years ago