Alternatives and similar repositories for wazuh-tools:

Users that are interested in wazuh-tools are comparing it to the libraries listed below

• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆63Updated 10 months ago
• juaromu / wazuh-opencti
  ☆33Updated last year
• juaromu / wazuh-nmap
  ☆18Updated 2 years ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆64Updated 3 years ago
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆28Updated 4 months ago
• NUKIB / misp
  Docker image for MISP
  ☆122Updated last month
• OpenSecureCo / Wazuh
  ☆31Updated 3 years ago
• juaromu / wazuh-misp
  ☆15Updated 2 years ago
• crow1011 / wazuh2thehive
  Wazuh integration TheHive
  ☆34Updated 2 years ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆88Updated 2 years ago
• jctello / JCT-Wazuh
  Tools for Wazuh by Juan C. Tello
  ☆14Updated 3 years ago
• dariommr / scripts
  Personal scripts
  ☆12Updated 5 months ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆37Updated 2 years ago
• SophosRapidResponse / OSQuery
  ☆83Updated last month
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆107Updated 2 years ago
• SanWieb / sigWah
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆33Updated 4 years ago
• juaromu / wazuh
  ☆18Updated 3 years ago
• MISP / misp-docker
  A production ready Dockered MISP
  ☆204Updated this week
• sophos / Sophos-Central-SIEM-Integration
  Simple integration script for 3rd party systems such as SIEMs. Offers command line, file or syslog output in CEF, JSON or key-value pair …
  ☆129Updated last year
• cloudfence / opnsense-wazuh
  Tools to integrate 2 great security tools OPNsense and Wazuh
  ☆29Updated 3 years ago
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆118Updated 7 months ago
• yevonnaelandrew / t-guard
  T-Guard Repository
  ☆13Updated 9 months ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆43Updated 4 months ago
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆62Updated 2 months ago
• socfortress / CoPilot
  SOCFortress CoPilot
  ☆250Updated this week
• sophos / sophos-central-api-connector
  Leverage Sophos Central API
  ☆27Updated last year
• misje / opencti-wazuh-connector
  OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
  ☆16Updated 6 months ago
• josh-morin / qradar
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆80Updated 6 months ago
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆52Updated 3 weeks ago
• nateuribe / Wazuh-IRIS-integration
  (Unofficial) Wazuh integration to send alerts to IRIS.
  ☆17Updated last month