Alternatives and similar repositories for Security-Monitoring-using-Wazuh:

Users that are interested in Security-Monitoring-using-Wazuh are comparing it to the libraries listed below

• santosomar / kev_checker
  A basic Python program to check Cybersecurity & Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) Catalog
  ☆18Updated last year
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆47Updated last year
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆45Updated 8 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• PacktPublishing / Security-Orchestration-Automation-and-Response-for-Security-Analysts
  Security Orchestration, Automation and Response for Security Analysts, published by Packt
  ☆18Updated last year
• SentineLabs / log4j_response
  ☆15Updated 3 years ago
• ezaspy / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆32Updated last month
• jasonsford / IPScraper
  This script provides a Python library with methods to authenticate to various sources of threat intelligence and query IPs for the latest…
  ☆18Updated 2 years ago
• lkarlslund / adalanche-sampledata
  Explore the GOAD Active Directory lab in 5 minutes with Adalanche
  ☆36Updated last week
• cisagov / vulnerable-instances
  Virtual machines that are set up with a variety of known vulnerabilities.
  ☆12Updated 2 years ago
• Securityinbits / cheatsheet
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆25Updated last year
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆24Updated 5 years ago
• trevorbryant / usgov-controls
  US Government controls formatted for usability
  ☆17Updated 3 years ago
• juaromu / wazuh
  ☆18Updated 3 years ago
• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Updated 3 years ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆14Updated 4 years ago
• joeavanzato / ThreatSim
  Threat Simulator for Enterprise Networks
  ☆14Updated 2 years ago
• Yamato-Security / Presentations
  ☆17Updated 2 months ago
• michalpurzynski / suricata-rules
  Example Suricata rules implementing some of my detection tactics
  ☆20Updated 2 years ago
• RiverGumSecurity / RegEx
  ☆21Updated 3 years ago
• Starke427 / Windows-Security-Policy
  Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.
  ☆11Updated 4 years ago
• deepanshusood / SANS-Posters
  SANS has a massive list of posters available for quick reference to aid you in your security learning.
  ☆12Updated 3 years ago
• EC-DIGIT-CSIRC / OpenTIDE
  Open Threat-Informed Detection Engineering
  ☆28Updated last week
• cisagov / kali-packer
  This project can be used to create AMIs based on Kali Linux, a penetration testing distribution.
  ☆18Updated this week
• MISP / misp-training-lea
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆31Updated last year
• WithSecureLabs / FLAIR
  F-Secure Lightweight Acqusition for Incident Response (FLAIR)
  ☆16Updated 3 years ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆51Updated 2 years ago
• AhmadMavali / wazuh_misp_integration
  ☆13Updated last year