Our collection of Wazuh detection rules for our Offense Lab
☆20Feb 13, 2022Updated 4 years ago
Alternatives and similar repositories for wazuh-detection-rules
Users that are interested in wazuh-detection-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆12Jun 20, 2020Updated 6 years ago
- Sigma to Wazuh rule converter☆23Apr 28, 2026Updated 2 months ago
- Useful scripts for those administering Wazuh☆97Jan 6, 2026Updated 6 months ago
- Personal scripts☆15Sep 11, 2024Updated last year
- Tools to integrate 2 great security tools OPNsense and Wazuh☆34Aug 26, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆43Aug 26, 2023Updated 2 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆73Jul 21, 2021Updated 4 years ago
- Scripts to automatically import threat intel into QRadar☆14Jun 20, 2019Updated 7 years ago
- Wazuh integration TheHive☆42Feb 21, 2023Updated 3 years ago
- A configuration to allow Wazuh to communicate with ChatGPT, based on https://loggar.hashnode.dev/augmenting-wazuh-with-chatgpt-integratio…☆25Mar 20, 2023Updated 3 years ago
- Wazuh prometheus exporter☆35Jul 4, 2025Updated last year
- Configurations to implement Wazuh☆13Nov 28, 2022Updated 3 years ago
- Django middleware and signals for handling security events☆14Apr 14, 2021Updated 5 years ago
- Official documentation for TheHive Project applications☆21Sep 29, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- In this projects are custom-decoders and custom-rules for Wazuh by me. Feel free to use it, you can redistribute it and/or modify it unde…☆65Mar 7, 2026Updated 4 months ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Jul 23, 2015Updated 10 years ago
- 一个代理扫描平台☆53Feb 1, 2021Updated 5 years ago
- ☆15Oct 6, 2022Updated 3 years ago
- Scan SSL based TCP services, ips, ports and network ranges to obtain certificate expiry data. Get automated alerts about certificates exp…☆29Feb 20, 2016Updated 10 years ago
- ☆57Apr 23, 2026Updated 2 months ago
- Centralized Active Directory Auditing Tool☆21Oct 28, 2022Updated 3 years ago
- Wazuh decoder for mikrotik logs and monitoring login/logout wireguard peers☆38Jun 19, 2024Updated 2 years ago
- 🎯 Powershell scripts for Windows Server☆15May 17, 2018Updated 8 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- This repository will describe the details surrounding the SIEM (wazuh) mini project, which will cover all aspects of topology design, dep…☆30Mar 19, 2023Updated 3 years ago
- 🚀 Smallest event emitter for JavaScript with all the power of ES6 Maps!☆11Jul 25, 2019Updated 6 years ago
- Python BlueSky client☆10Aug 4, 2023Updated 2 years ago
- Ansible role for security standards compliance☆13Mar 6, 2019Updated 7 years ago
- The application consists of several vulnerable web applications that are integrated with Wazuh.☆23May 1, 2023Updated 3 years ago
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆1,348Mar 11, 2026Updated 3 months ago
- Downloading Splunk, made easy through scripts☆29Jul 1, 2026Updated last week
- My various command line scripts that I'm using on my Debian desktops and servers☆12Jun 17, 2026Updated 3 weeks ago
- PostWoman 💅 is a lightweight Postman alternative designed specifically for macOS☆32Jan 16, 2026Updated 5 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- An Ansible playbook to setup my Ubuntu system☆11Apr 22, 2016Updated 10 years ago
- Python library powering opsi☆21Jun 25, 2026Updated 2 weeks ago
- Shell script to download apps from Splunkbase☆24May 19, 2020Updated 6 years ago
- Create dnsmasq DHCP & DNS configs using the Netbox API.☆14Jul 25, 2023Updated 2 years ago
- (Codeberg Mirror) A CLI application to create and update machines and VMs in Netbox.☆17Apr 9, 2026Updated 3 months ago
- Passive discovery and listing of devices on a network☆12Updated this week
- cis_pdf_parser.py is a python script for parsing CIS Benchmark PDF files from the Center for Internet Security into CSV files.☆29Dec 11, 2023Updated 2 years ago