Alternatives and similar repositories for Security-Monitoring-using-Wazuh

Users that are interested in Security-Monitoring-using-Wazuh are comparing it to the libraries listed below

• MISP / misp-playbooks
  MISP Playbooks
  ☆219Updated last month
• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆65Updated last year
• PacktPublishing / Threat-Hunting-with-Elastic-Stack
  Threat Hunting with Elastic Stack, Published by Packt
  ☆39Updated 2 years ago
• st0pp3r / awesome-detection-engineer
  Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…
  ☆133Updated 2 weeks ago
• LetsDefend / incident-response-playbooks
  ☆189Updated last year
• tguard-soc-package / nusantara
  ☆218Updated last year
• socfortress / wazuh-mcp-server
  Repo to hold wazuh manager mcp server
  ☆68Updated 2 months ago
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆31Updated last year
• PacktPublishing / Incident-Response-with-Threat-Intelligence
  Incident Response with Threat Intelligence, published by Packt
  ☆55Updated last year
• iknowjason / AutomatedEmulation
  An automated Adversary Emulation lab with terraform and MCP server. Build Caldera techniques and operations assisted with LLMs. Built f…
  ☆204Updated 2 weeks ago
• CrowdStrike / community
  CrowdStrike's Open Source Policy & Contribution Guide
  ☆46Updated last week
• rfackroyd / detection-engineering-starter-pack
  A starter pack of resources to help you get started in Detection Engineering.
  ☆176Updated 3 months ago
• CiscoCXSecurity / Detection-Engineering-Framework
  ☆96Updated 2 weeks ago
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆132Updated last year
• juaromu / wazuh-opencti
  ☆40Updated 2 years ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆49Updated 6 months ago
• aws-samples / jupyter-notebook-for-incident-response
  A library of Incident Response notebooks using Jupyter. We will show how you can leverage pre-defined notebook files to guide your incide…
  ☆151Updated 2 years ago
• jccyberx / Cybether
  Cybether - A modern, open-source Cybersecurity Governance, Risk, and Compliance (GRC) dashboard
  ☆83Updated 2 months ago
• WGU-CCDC / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆106Updated 2 years ago
• utilsec / QuickStart-Guides
  ☆53Updated 2 years ago
• okanyildiz / WindowsSecurityAudit
  A comprehensive Windows security auditing and threat detection toolkit. Features 58 production-ready PowerShell functions organized into …
  ☆68Updated last month
• vm32 / Linux-Incident-Response
  practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response
  ☆403Updated last year
• hevnsnt / Awesome_Incident_Response
  Awesome Incident Response
  ☆283Updated 2 months ago
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆100Updated last week
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆70Updated last year
• arsolutioner / fortigate-belsen-leak
  Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Group
  ☆86Updated 10 months ago
• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆123Updated 2 years ago
• chocolatecoat / DFIR-Templates
  Incident Response documents and tooling
  ☆110Updated 3 months ago
• utilsec / Getting_Started_with_ICS
  My eBook with tips on how to get started in industrial (ICS/OT) cyber security.
  ☆69Updated 2 years ago
• juaromu / wazuh
  ☆20Updated 4 years ago