wazuh / wazuh-rulesetLinks
Wazuh - Ruleset
☆450Updated 9 months ago
Alternatives and similar repositories for wazuh-ruleset
Users that are interested in wazuh-ruleset are comparing it to the libraries listed below
Sorting:
- Wazuh - Project documentation☆219Updated this week
- Plugins for Wazuh Dashboard☆471Updated this week
- Scirius is a web application for Suricata ruleset management and threat hunting.☆654Updated this week
- A repository for using osquery for incident detection and response☆853Updated 2 years ago
- Create actionable data from your Vulnerability Scans☆1,386Updated 2 years ago
- Documentation of TheHive☆398Updated last year
- Security event correlation engine for ELK stack☆440Updated 11 months ago
- Phantom Community Playbooks☆502Updated last week
- MISP Docker (XME edition)☆282Updated last year
- Wazuh - RESTful API☆74Updated 9 months ago
- Suricata IDS/IPS log analytics using the Elastic Stack.☆239Updated 3 years ago
- Mapping the MITRE ATT&CK Matrix with Osquery☆796Updated 2 years ago
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,433Updated 2 weeks ago
- Documentation of Cortex☆174Updated last year
- Automated deployment scripts for the RockNSM network hunting distribution.☆454Updated last year
- Contains Logstash related content including tons of Logstash configurations☆253Updated 3 years ago
- Python library using the MISP Rest API☆468Updated this week
- Actionable analytics designed to combat threats☆989Updated 3 years ago
- Cortex Analyzers Repository☆461Updated last week
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆871Updated 9 months ago
- An information security preparedness tool to do adversarial simulation.☆1,124Updated 6 years ago
- Open Source SIEM (Security Information and Event Management system).☆213Updated last year
- Python API Client for TheHive☆229Updated this week
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆1,048Updated last month
- Main MineMeld documentation repo☆378Updated 7 years ago
- Zeek-Formatted Threat Intelligence Feeds☆370Updated this week
- A (nearly) production ready Dockered MISP☆232Updated last year
- Suricata, Snort and Zeek IDS rule and pcap testing system☆480Updated last month
- SIEM Tactics, Techiques, and Procedures☆633Updated this week
- OpenCTI Connectors☆447Updated this week