Our collection of Wazuh detection rules for our Offense Lab
☆18Feb 13, 2022Updated 4 years ago
Alternatives and similar repositories for wazuh-detection-rules
Users that are interested in wazuh-detection-rules are comparing it to the libraries listed below
Sorting:
- Sigma to Wazuh rule converter☆18Sep 28, 2025Updated 5 months ago
- ☆22Mar 1, 2022Updated 4 years ago
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆11Jun 20, 2020Updated 5 years ago
- Useful scripts for those administering Wazuh☆93Jan 6, 2026Updated 2 months ago
- Tools to integrate 2 great security tools OPNsense and Wazuh☆31Aug 26, 2021Updated 4 years ago
- Wazuh integration TheHive☆41Feb 21, 2023Updated 3 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆72Jul 21, 2021Updated 4 years ago
- In this projects are custom-decoders and custom-rules for Wazuh by me. Feel free to use it, you can redistribute it and/or modify it unde…☆60Updated this week
- ☆41Aug 26, 2023Updated 2 years ago
- ☆20Oct 17, 2021Updated 4 years ago
- Awesome Cyber-Security Data-sets Collection☆22Aug 30, 2018Updated 7 years ago
- This repository will describe the details surrounding the SIEM (wazuh) mini project, which will cover all aspects of topology design, dep…☆28Mar 19, 2023Updated 2 years ago
- 一个代理扫描平台☆54Feb 1, 2021Updated 5 years ago
- ☆20Jan 20, 2023Updated 3 years ago
- Shell script to download apps from Splunkbase☆24May 19, 2020Updated 5 years ago
- Downloading Splunk, made easy through scripts☆25Updated this week
- 基于inotify的Linux文件实时监控程序,同时调用河马扫描来检测文件☆22Sep 4, 2020Updated 5 years ago
- Python BlueSky client☆10Aug 4, 2023Updated 2 years ago
- Wazuh prometheus exporter☆35Jul 4, 2025Updated 8 months ago
- One Day of Python for SaintCon 2022☆11Jan 3, 2023Updated 3 years ago
- This repo contains scripts to automate the addition of 3rd party Wazuh rules to your Wazuh installation☆18Dec 31, 2023Updated 2 years ago
- 一款存储HTTP请求入库的burpsuite插件☆29Apr 8, 2018Updated 7 years ago
- ☆10Feb 13, 2021Updated 5 years ago
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆1,239Feb 23, 2026Updated 2 weeks ago
- Step by step guide to deploy any machine learning prediction web API using Flask, Gunicorn, NGINX containerised in Docker on GCP Kubernet…☆12Dec 8, 2022Updated 3 years ago
- Collection of bash scripts and Ansible playbooks.☆11Updated this week
- Sample data generator for the Splunk for Palo Alto Networks app.☆12Sep 25, 2016Updated 9 years ago
- This is a fork from Ryan Carson's AI Dev Tasks repository, with some code cleanup and refactoring to enable support for PostgreSQL databa…☆15Sep 8, 2025Updated 6 months ago
- 🚀 Smallest event emitter for JavaScript with all the power of ES6 Maps!☆11Jul 25, 2019Updated 6 years ago
- BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.☆43Nov 27, 2022Updated 3 years ago
- Ansible Collection☆12Apr 22, 2025Updated 10 months ago
- Zeek support for Community ID flow hashing.☆36Jul 11, 2023Updated 2 years ago
- This is a script to import Cisco Talos's IP Blacklist into a Tag (Host Group) within Stealthwatch. This will also optionally create a Cu…☆11May 22, 2023Updated 2 years ago
- Bugs Framework☆10Updated this week
- The Eureka Lab Series is designed for learners at all levels of experience and interest in security concepts and technologies.☆10Nov 30, 2025Updated 3 months ago
- ☆13Jul 29, 2025Updated 7 months ago
- The dataset was used as a support to attack obfuscations. It is the largest obfuscated dataset, with realistic and various binaries and f…☆19Jan 15, 2026Updated last month
- Queries from the blog posts.☆15Oct 6, 2024Updated last year
- In this project, I am creating a facial mesh using opencv and mediapipe. It can detect a face even with a face mask.☆13Sep 13, 2021Updated 4 years ago