Our collection of Wazuh detection rules for our Offense Lab
☆18Feb 13, 2022Updated 4 years ago
Alternatives and similar repositories for wazuh-detection-rules
Users that are interested in wazuh-detection-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆11Jun 20, 2020Updated 5 years ago
- Sigma to Wazuh rule converter☆18Sep 28, 2025Updated 6 months ago
- ☆22Mar 1, 2022Updated 4 years ago
- Zabbix Templates and scripts to monitor OSSEC or Wazuh Manager Intrusion Detection☆14Sep 18, 2025Updated 6 months ago
- Personal scripts☆15Sep 11, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Tools to integrate 2 great security tools OPNsense and Wazuh☆31Aug 26, 2021Updated 4 years ago
- ☆41Aug 26, 2023Updated 2 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆72Jul 21, 2021Updated 4 years ago
- ☆20Oct 17, 2021Updated 4 years ago
- Scripts to automatically import threat intel into QRadar☆14Jun 20, 2019Updated 6 years ago
- Wazuh integration TheHive☆41Feb 21, 2023Updated 3 years ago
- Wazuh prometheus exporter☆35Jul 4, 2025Updated 8 months ago
- Spot all domain controllers in a Microsoft Active Directory environment. Find computer name, FQDN, and IP address(es) of all DCs.☆20Jun 23, 2024Updated last year
- Configurations to implement Wazuh☆12Nov 28, 2022Updated 3 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Convert Sigma rules to Wazuh rules☆74Sep 13, 2025Updated 6 months ago
- opsi-script aka. opsi-winst and other various tools.☆10Mar 18, 2026Updated last week
- Time limited, auto-expiring group memberships for users on Google Cloud☆14Mar 29, 2022Updated 4 years ago
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆39Jun 8, 2020Updated 5 years ago
- Django middleware and signals for handling security events☆13Apr 14, 2021Updated 4 years ago
- Dominate the Active Directory game. An Active Directory environments pentest tool complementary to existing ones like NetExec.☆19Mar 22, 2026Updated last week
- OSSEC Decoder & Rulesets for Sysmon Events☆15Jul 23, 2015Updated 10 years ago
- Scan SSL based TCP services, ips, ports and network ranges to obtain certificate expiry data. Get automated alerts about certificates exp…☆29Feb 20, 2016Updated 10 years ago
- Tools for Wazuh by Juan C. Tello☆15Jan 13, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- 基于inotify的Linux文件实时监控程序,同时调用河马扫描来检测文件☆22Sep 4, 2020Updated 5 years ago
- Centralized Active Directory Auditing Tool☆21Oct 28, 2022Updated 3 years ago
- Wazuh decoder for mikrotik logs and monitoring login/logout wireguard peers☆34Jun 19, 2024Updated last year
- ☆20Jan 20, 2023Updated 3 years ago
- 🚀 Smallest event emitter for JavaScript with all the power of ES6 Maps!☆11Jul 25, 2019Updated 6 years ago
- This repository will describe the details surrounding the SIEM (wazuh) mini project, which will cover all aspects of topology design, dep…☆29Mar 19, 2023Updated 3 years ago
- Workshop Materials from DEFCON 25 (7/27/2017)☆22Jul 31, 2017Updated 8 years ago
- A malicious .cab creation tool for CVE-2021-40444☆13Sep 12, 2021Updated 4 years ago
- Documentation sources for syslog-ng Open Source Edition (https://github.com/syslog-ng/syslog-ng)☆10May 6, 2024Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Scrapy spider to recursively crawl for TOR hidden services☆11Oct 12, 2017Updated 8 years ago
- PostWoman 💅 is a lightweight Postman alternative designed specifically for macOS☆29Jan 16, 2026Updated 2 months ago
- This repository contains a custom connector script to fetch university data from universities.hipolabs.com and visualize it in Looker Stu…☆24Jun 22, 2024Updated last year
- Simple wire-guard UI☆33Mar 16, 2026Updated last week
- Shell script to download apps from Splunkbase☆24May 19, 2020Updated 5 years ago
- Create dnsmasq DHCP & DNS configs using the Netbox API.☆14Jul 25, 2023Updated 2 years ago
- [WIP] Adds physical storage device support to Netbox, primarily intended for SAS/SATA/NVMe type devices.☆12Mar 11, 2024Updated 2 years ago