Ossec Sysmon Save

A Ruleset to enhance detection capabilities of Ossec using Sysmon

Project README

ossec-sysmon

A Ruleset to enhance detection capabilities of Ossec using Sysmon

See the following post to see how this ruleset can help you detect Emotet and other malicious document malware.

https://laskowski-tech.com/2018/11/28/detecting-emotet-and-other-downloader-malware-with-ossec-wazuh/

Mapping

The 0805-sysmon-modular rules map to the Sysmon configuration by olafhartong and are tagged to the MITRE ATT&CK framework. You can find that at the following link.

https://github.com/olafhartong/sysmon-modular

Open Source Agenda is not affiliated with "Ossec Sysmon" Project. README Source: Hestat/ossec-sysmon

Stars

Open Issues

Last Commit

2 years ago

Repository

Hestat/ossec-sysmon

Homepage

https://laskowski-tech.com/2018/11/28/detecting-emotet-and-other-downloader-malware-with-ossec-wazuh/

Open Source Agenda Badge

<a href="https://www.opensourceagenda.com/projects/ossec-sysmon"><img src="https://www.opensourceagenda.com/projects/ossec-sysmon/reviews/badge.svg" alt="Open Source Agenda"></a>

Submit Review Review Your Favorite Project

Submit Resource Articles, Courses, Videos

Submit Article Submit a post to our blog

From the blog

Dec 11, 2022

How to Choose Which Programming Language to Learn First?

From the blog

Dec 11, 2022