Hestat/ossec-sysmon external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Hestat/ossec-sysmon

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Hestat/ossec-sysmon)

Close

Hestat / ossec-sysmonView on GitHubMore

• External links
• Readme badge

A Ruleset to enhance detection capabilities of Ossec using Sysmon

☆98Apr 13, 2022Updated 4 years ago

Alternatives and similar repositories for ossec-sysmon

Users that are interested in ossec-sysmon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• sametsazak / sysmon

  View on GitHub
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆74Jul 21, 2021Updated 4 years ago
• SanWieb / sigWah

  View on GitHub
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆40Jun 8, 2020Updated 5 years ago
• branchnetconsulting / wazuh-tools

  View on GitHub
  Useful scripts for those administering Wazuh
  ☆95Jan 6, 2026Updated 4 months ago
• HKcyberstark / wazuh-ecs

  View on GitHub
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆28Jul 21, 2020Updated 5 years ago
• wazuh / wazuh-chef

  View on GitHub
  Wazuh - Chef cookbooks
  ☆25Jul 26, 2023Updated 2 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• juaromu / wazuh

  View on GitHub
  ☆21Oct 17, 2021Updated 4 years ago
• juaromu / wazuh-nmap

  View on GitHub
  ☆23Mar 1, 2022Updated 4 years ago
• pyToshka / wazuh-prometheus-exporter

  View on GitHub
  Wazuh prometheus exporter
  ☆35Jul 4, 2025Updated 10 months ago
• dariommr / scripts

  View on GitHub
  Personal scripts
  ☆15Sep 11, 2024Updated last year
• Hestat / soc-threat-hunting

  View on GitHub
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆27Jul 27, 2020Updated 5 years ago
• NoEnv / docker-wazuh-agent

  View on GitHub
  Wazuh Agent as Docker Image
  ☆25May 16, 2024Updated 2 years ago
• crow1011 / wazuh2thehive

  View on GitHub
  Wazuh integration TheHive
  ☆42Feb 21, 2023Updated 3 years ago
• averydiversifiedtech / ossec-wazuh-manager-zabbix

  View on GitHub
  Zabbix Templates and scripts to monitor OSSEC or Wazuh Manager Intrusion Detection
  ☆16Sep 18, 2025Updated 8 months ago
• wazuh / wazuh-puppet

  View on GitHub
  Wazuh - Puppet module
  ☆55May 15, 2026Updated last week
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• jctello / JCT-Wazuh

  View on GitHub
  Tools for Wazuh by Juan C. Tello
  ☆16Jan 13, 2022Updated 4 years ago
• olafhartong / sysmon-modular

  View on GitHub
  A repository of sysmon configuration modules
  ☆3,045Aug 21, 2024Updated last year
• juaromu / wazuh-domain-stats-alienvault

  View on GitHub
  ☆19Oct 20, 2021Updated 4 years ago
• theflakes / sigma_to_wazuh

  View on GitHub
  Convert Sigma rules to Wazuh rules
  ☆76Sep 13, 2025Updated 8 months ago
• socfortress / Wazuh-Rules

  View on GitHub
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆1,312Mar 11, 2026Updated 2 months ago
• wazuh / wazuh-api

  View on GitHub
  Wazuh - RESTful API
  ☆80Sep 17, 2024Updated last year
• baronpan / SysmonHunter

  View on GitHub
  An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal
  ☆205Apr 18, 2022Updated 4 years ago
• elceef / yara-rulz

  View on GitHub
  Collection of generic YARA rules
  ☆16Mar 18, 2026Updated 2 months ago
• HKcyberstark / TI_Mod

  View on GitHub
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19May 11, 2021Updated 5 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• cloudfence / opnsense-wazuh

  View on GitHub
  Tools to integrate 2 great security tools OPNsense and Wazuh
  ☆33Aug 26, 2021Updated 4 years ago
• SIFalcon / Detection

  View on GitHub
  ☆24Jul 7, 2023Updated 2 years ago
• aws-samples / aws-cloudformation-security-automation-for-wazuh

  View on GitHub
  NIST based open source security automation delivered as AWS cloudformation
  ☆21Jan 8, 2020Updated 6 years ago
• kajov / wazuh-kubernetes-helmchart

  View on GitHub
  Wazuh - Wazuh Kubernetes Helm chart. This repo is not maintained by Wazuh team. This is community project.
  ☆28Jun 2, 2022Updated 3 years ago
• openrport / openrport-ui

  View on GitHub
  OpenRport New opensource UI
  ☆27Sep 15, 2025Updated 8 months ago
• 0xbad53c / wazuh-detection-rules

  View on GitHub
  Our collection of Wazuh detection rules for our Offense Lab
  ☆20Feb 13, 2022Updated 4 years ago
• sttor / osquery-wazuh-response

  View on GitHub
  Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug
  ☆12Jun 20, 2020Updated 5 years ago
• Velocidex / cloudvelo

  View on GitHub
  An experimental Velociraptor implementation using cloud infrastructure
  ☆26Dec 2, 2025Updated 5 months ago
• ion-storm / sysmon-config

  View on GitHub
  Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into …
  ☆826Nov 5, 2023Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• olegzhr / altprobe

  View on GitHub
  collector
  ☆64May 15, 2026Updated last week
• CyberSift / OSQUERY-PACKS

  View on GitHub
  Osquery Packs we use for customer security hardening
  ☆12Jun 30, 2025Updated 10 months ago
• cmcmsec / suricata_open

  View on GitHub
  ☆13Feb 25, 2021Updated 5 years ago
• CityBaseInc / SIAC

  View on GitHub
  SIAC is an enterprise SIEM built on open-source technology.
  ☆114Oct 31, 2018Updated 7 years ago
• SophosRapidResponse / OSQuery

  View on GitHub
  ☆88Mar 7, 2025Updated last year
• OpenSecureCo / Wazuh

  View on GitHub
  ☆33Dec 12, 2021Updated 4 years ago
• peppelinux / django-audit-wazuh

  View on GitHub
  Django middleware and signals for handling security events
  ☆14Apr 14, 2021Updated 5 years ago