Mastodawn

@threatchain In my company, we check if the same alert has already been sent within a specific time period. I'm planning to add a silence feature to the project as well. Perhaps it would be possible to create a table for that too.

souzo 2d ago

Leveraging Wazuh detection and alerting with Clickdetect | Anomaly Detection | Multiple Source Correlation | by Vinicius Morais

https://medium.com/@souzo/leveraging-wazuh-detection-and-alerting-with-clickdetect-anomaly-detection-multple-source-d43f7747bf74

#cybersecurity #siem #cti #wazuh

Leveraging Wazuh detection and alerting with Clickdetect | Anomaly Detection | Multple Source

Learn how to extend Wazuh with Clickdetect and ClickHouse for SQL-based threat detection, multi-source correlation, anomaly detection, and batched alerts

Medium