├── LICENSE
├── README.md
├── bnc-siem-suite.macos
├── bnc-siem-suite.ps1
├── bnc-siem-suite.sh
├── check-osquery.ps1
├── check-osquery.sh
├── check-sysmon.ps1
├── check-vd-cve
├── check-wazuh-linux-agent-suite
├── check-wazuh-windows-agent-suite.ps1
├── custom-ruleset
    ├── decoders
    │   └── bnc_unifi_decoders.xml
    └── rules
    │   ├── bnc_sophos_rules.xml
    │   └── bnc_unifi_rules.xml
├── custom-win-fw-drop
├── dashboard-screenshots
    └── placeholder.txt
├── deploy-wazuh-amazon-linux-v1-docker-host
├── deploy-wazuh-amzn2-docker-host
├── deploy-wazuh-amzn2023-docker-host
├── deploy-wazuh-linux-agent-suite
├── deploy-wazuh-windows-agent-suite.ps1
├── dropcount-analysisd
├── easimulate
├── esquery
├── esquery.ps1
├── extract_windows_full_log_sample
├── fim-state-summary
├── flush-sca-state
├── flush-vd-state
├── gen-agent-deploy-local.ps1
├── gen-bnc-deploy-local.ps1
├── import-sigwah
├── install-new-wazuh-root-ca.ps1
├── install-wazuh-kibana-app
├── lab-adapted-wazuh-passwords-tool.sh
├── lab-check-sysmon.ps1
├── merge-wazuh-conf.ps1
├── merge-wazuh-conf.sh
├── migrate_es_to_wi
├── ossec-logtest-eventchannel
├── pipeline.json
├── reindex
├── remove-wazuh-windows-agent-suite.ps1
├── sca.ndjson
├── show-wazuh-rule
├── siem-agent-deploy.ps1
├── siem-agent-deploy.sh
├── siem-offline-windows-deploy.zip
├── sophos-central-wazuh-rules.xml
├── sync-ossec-conf
├── sysmon-bootstrap
├── sysmon
    ├── 1100_sysmon.xml
    ├── alt-1100_sysmon.xml
    └── sysmon.pipeline
├── tprobe
├── upgrade-all-agents
├── wazadcounter.sh
├── wazuh-logtest-eventchannel
└── wazuh-refresh-maxmind-geoip-via-elastic


/LICENSE:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/LICENSE


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/README.md


--------------------------------------------------------------------------------
/bnc-siem-suite.macos:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/bnc-siem-suite.macos


--------------------------------------------------------------------------------
/bnc-siem-suite.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/bnc-siem-suite.ps1


--------------------------------------------------------------------------------
/bnc-siem-suite.sh:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/bnc-siem-suite.sh


--------------------------------------------------------------------------------
/check-osquery.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/check-osquery.ps1


--------------------------------------------------------------------------------
/check-osquery.sh:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/check-osquery.sh


--------------------------------------------------------------------------------
/check-sysmon.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/check-sysmon.ps1


--------------------------------------------------------------------------------
/check-vd-cve:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/check-vd-cve


--------------------------------------------------------------------------------
/check-wazuh-linux-agent-suite:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/check-wazuh-linux-agent-suite


--------------------------------------------------------------------------------
/check-wazuh-windows-agent-suite.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/check-wazuh-windows-agent-suite.ps1


--------------------------------------------------------------------------------
/custom-ruleset/decoders/bnc_unifi_decoders.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/custom-ruleset/decoders/bnc_unifi_decoders.xml


--------------------------------------------------------------------------------
/custom-ruleset/rules/bnc_sophos_rules.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/custom-ruleset/rules/bnc_sophos_rules.xml


--------------------------------------------------------------------------------
/custom-ruleset/rules/bnc_unifi_rules.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/custom-ruleset/rules/bnc_unifi_rules.xml


--------------------------------------------------------------------------------
/custom-win-fw-drop:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/custom-win-fw-drop


--------------------------------------------------------------------------------
/dashboard-screenshots/placeholder.txt:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/dashboard-screenshots/placeholder.txt


--------------------------------------------------------------------------------
/deploy-wazuh-amazon-linux-v1-docker-host:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/deploy-wazuh-amazon-linux-v1-docker-host


--------------------------------------------------------------------------------
/deploy-wazuh-amzn2-docker-host:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/deploy-wazuh-amzn2-docker-host


--------------------------------------------------------------------------------
/deploy-wazuh-amzn2023-docker-host:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/deploy-wazuh-amzn2023-docker-host


--------------------------------------------------------------------------------
/deploy-wazuh-linux-agent-suite:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/deploy-wazuh-linux-agent-suite


--------------------------------------------------------------------------------
/deploy-wazuh-windows-agent-suite.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/deploy-wazuh-windows-agent-suite.ps1


--------------------------------------------------------------------------------
/dropcount-analysisd:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/dropcount-analysisd


--------------------------------------------------------------------------------
/easimulate:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/easimulate


--------------------------------------------------------------------------------
/esquery:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/esquery


--------------------------------------------------------------------------------
/esquery.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/esquery.ps1


--------------------------------------------------------------------------------
/extract_windows_full_log_sample:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/extract_windows_full_log_sample


--------------------------------------------------------------------------------
/fim-state-summary:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/fim-state-summary


--------------------------------------------------------------------------------
/flush-sca-state:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/flush-sca-state


--------------------------------------------------------------------------------
/flush-vd-state:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/flush-vd-state


--------------------------------------------------------------------------------
/gen-agent-deploy-local.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/gen-agent-deploy-local.ps1


--------------------------------------------------------------------------------
/gen-bnc-deploy-local.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/gen-bnc-deploy-local.ps1


--------------------------------------------------------------------------------
/import-sigwah:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/import-sigwah


--------------------------------------------------------------------------------
/install-new-wazuh-root-ca.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/install-new-wazuh-root-ca.ps1


--------------------------------------------------------------------------------
/install-wazuh-kibana-app:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/install-wazuh-kibana-app


--------------------------------------------------------------------------------
/lab-adapted-wazuh-passwords-tool.sh:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/lab-adapted-wazuh-passwords-tool.sh


--------------------------------------------------------------------------------
/lab-check-sysmon.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/lab-check-sysmon.ps1


--------------------------------------------------------------------------------
/merge-wazuh-conf.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/merge-wazuh-conf.ps1


--------------------------------------------------------------------------------
/merge-wazuh-conf.sh:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/merge-wazuh-conf.sh


--------------------------------------------------------------------------------
/migrate_es_to_wi:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/migrate_es_to_wi


--------------------------------------------------------------------------------
/ossec-logtest-eventchannel:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/ossec-logtest-eventchannel


--------------------------------------------------------------------------------
/pipeline.json:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/pipeline.json


--------------------------------------------------------------------------------
/reindex:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/reindex


--------------------------------------------------------------------------------
/remove-wazuh-windows-agent-suite.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/remove-wazuh-windows-agent-suite.ps1


--------------------------------------------------------------------------------
/sca.ndjson:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/sca.ndjson


--------------------------------------------------------------------------------
/show-wazuh-rule:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/show-wazuh-rule


--------------------------------------------------------------------------------
/siem-agent-deploy.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/siem-agent-deploy.ps1


--------------------------------------------------------------------------------
/siem-agent-deploy.sh:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/siem-agent-deploy.sh


--------------------------------------------------------------------------------
/siem-offline-windows-deploy.zip:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/siem-offline-windows-deploy.zip


--------------------------------------------------------------------------------
/sophos-central-wazuh-rules.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/sophos-central-wazuh-rules.xml


--------------------------------------------------------------------------------
/sync-ossec-conf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/sync-ossec-conf


--------------------------------------------------------------------------------
/sysmon-bootstrap:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/sysmon-bootstrap


--------------------------------------------------------------------------------
/sysmon/1100_sysmon.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/sysmon/1100_sysmon.xml


--------------------------------------------------------------------------------
/sysmon/alt-1100_sysmon.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/sysmon/alt-1100_sysmon.xml


--------------------------------------------------------------------------------
/sysmon/sysmon.pipeline:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/sysmon/sysmon.pipeline


--------------------------------------------------------------------------------
/tprobe:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/tprobe


--------------------------------------------------------------------------------
/upgrade-all-agents:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/upgrade-all-agents


--------------------------------------------------------------------------------
/wazadcounter.sh:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/wazadcounter.sh


--------------------------------------------------------------------------------
/wazuh-logtest-eventchannel:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/wazuh-logtest-eventchannel


--------------------------------------------------------------------------------
/wazuh-refresh-maxmind-geoip-via-elastic:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/branchnetconsulting/wazuh-tools/HEAD/wazuh-refresh-maxmind-geoip-via-elastic


--------------------------------------------------------------------------------