├── .github └── FUNDING.yml ├── .gitignore ├── LICENSE ├── README.md ├── docs └── wazuh_ticket_handler.md ├── images ├── categories_circle_dark.png └── categories_circle_dark_old.png ├── prepare ├── Hash_Threatlist_Shuffle.json ├── IP_Threatlist_Shuffle_.json ├── URL_Threatlist_Shuffle_.json ├── WAZUH_Webhook_handler_.json ├── Warning_Multiple_Login_Failures.js └── thehive_Webhook_handler.json ├── response ├── AWS_S3_Block_IP.json ├── FTP_Block_IP_AWS_Firewall.json ├── Handle_Multiple_Emails.json ├── Handle_Single_Email.json ├── IOC_Analysis.json ├── SSH_Block_IP_AWS_Firewall.json ├── TheHive_Webhook_Handler.json └── Wazuh_Webhook_Handler.json └── test_workflows ├── 129_testing.json ├── IOC parser - Medium post 4.json ├── aws_ec2.json ├── aws_iam.json ├── basic_file_testing.json ├── basic_file_testing_thehive.json ├── complexity_test.json ├── multischedule_complexity_test.json ├── my_first_workflow.json └── thehive_webhook.json /.github/FUNDING.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/.github/FUNDING.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | *.swo 2 | *.swp 3 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/README.md -------------------------------------------------------------------------------- /docs/wazuh_ticket_handler.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/docs/wazuh_ticket_handler.md -------------------------------------------------------------------------------- /images/categories_circle_dark.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/images/categories_circle_dark.png -------------------------------------------------------------------------------- /images/categories_circle_dark_old.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/images/categories_circle_dark_old.png -------------------------------------------------------------------------------- /prepare/Hash_Threatlist_Shuffle.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/prepare/Hash_Threatlist_Shuffle.json -------------------------------------------------------------------------------- /prepare/IP_Threatlist_Shuffle_.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/prepare/IP_Threatlist_Shuffle_.json -------------------------------------------------------------------------------- /prepare/URL_Threatlist_Shuffle_.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/prepare/URL_Threatlist_Shuffle_.json -------------------------------------------------------------------------------- /prepare/WAZUH_Webhook_handler_.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/prepare/WAZUH_Webhook_handler_.json -------------------------------------------------------------------------------- /prepare/Warning_Multiple_Login_Failures.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/prepare/Warning_Multiple_Login_Failures.js -------------------------------------------------------------------------------- /prepare/thehive_Webhook_handler.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/prepare/thehive_Webhook_handler.json -------------------------------------------------------------------------------- /response/AWS_S3_Block_IP.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/response/AWS_S3_Block_IP.json -------------------------------------------------------------------------------- /response/FTP_Block_IP_AWS_Firewall.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/response/FTP_Block_IP_AWS_Firewall.json -------------------------------------------------------------------------------- /response/Handle_Multiple_Emails.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/response/Handle_Multiple_Emails.json -------------------------------------------------------------------------------- /response/Handle_Single_Email.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/response/Handle_Single_Email.json -------------------------------------------------------------------------------- /response/IOC_Analysis.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/response/IOC_Analysis.json -------------------------------------------------------------------------------- /response/SSH_Block_IP_AWS_Firewall.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/response/SSH_Block_IP_AWS_Firewall.json -------------------------------------------------------------------------------- /response/TheHive_Webhook_Handler.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/response/TheHive_Webhook_Handler.json -------------------------------------------------------------------------------- /response/Wazuh_Webhook_Handler.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/response/Wazuh_Webhook_Handler.json -------------------------------------------------------------------------------- /test_workflows/129_testing.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/test_workflows/129_testing.json -------------------------------------------------------------------------------- /test_workflows/IOC parser - Medium post 4.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/test_workflows/IOC parser - Medium post 4.json -------------------------------------------------------------------------------- /test_workflows/aws_ec2.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/test_workflows/aws_ec2.json -------------------------------------------------------------------------------- /test_workflows/aws_iam.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/test_workflows/aws_iam.json -------------------------------------------------------------------------------- /test_workflows/basic_file_testing.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/test_workflows/basic_file_testing.json -------------------------------------------------------------------------------- /test_workflows/basic_file_testing_thehive.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/test_workflows/basic_file_testing_thehive.json -------------------------------------------------------------------------------- /test_workflows/complexity_test.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/test_workflows/complexity_test.json -------------------------------------------------------------------------------- /test_workflows/multischedule_complexity_test.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/test_workflows/multischedule_complexity_test.json -------------------------------------------------------------------------------- /test_workflows/my_first_workflow.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/test_workflows/my_first_workflow.json -------------------------------------------------------------------------------- /test_workflows/thehive_webhook.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Shuffle/workflows/HEAD/test_workflows/thehive_webhook.json --------------------------------------------------------------------------------