Alternatives and similar repositories for OSSIEM

Users that are interested in OSSIEM are comparing it to the libraries listed below

• socfortress / CoPilot
  SOCFortress CoPilot
  ☆346Updated this week
• socfortress / OSSIEM
  Open Source SIEM Stack
  ☆110Updated last month
• socfortress / Wazuh-Rules
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆856Updated 3 weeks ago
• MISP / misp-docker
  A production ready Dockered MISP
  ☆270Updated last week
• alextibor / wazuh-fortigate-rules-decoders
  Decoders and Rules for Fortigate in Wazuh
  ☆44Updated last year
• tguard-soc-package / nusantara
  ☆217Updated last year
• socfortress / iris-velociraptorartifact-module
  IRIS Module to Run Any Velociraptor Artifact
  ☆13Updated 2 years ago
• WithSecureLabs / Kanvas
  A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.
  ☆358Updated last month
• LoicVeirman / Hello-My-Dir
  This project is specifically made for brand new directory and ease their creation with all security rules in place.
  ☆110Updated 2 months ago
• madirish / ossocdocs
  Open Source Security Operations Center Documentation
  ☆192Updated 2 months ago
• utmstack / UTMStack
  Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.
  ☆319Updated this week
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆29Updated 11 months ago
• CyberFlooD / WAZUH-Sentinel-AD
  WAZUH Sentinel AD - Ultimate rules for Wazuh
  ☆39Updated 3 weeks ago
• itiligent / Easy-OpenVAS-Installer
  2025 OpenVAS appliance install & upgrade scripts, includes https front end (self signed), authenticated SMB scanning & email reports
  ☆76Updated 5 months ago
• LoicVeirman / HardenAD
  Hardening Active Directory version 2
  ☆334Updated this week
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆85Updated 2 months ago
• socfortress / Playbooks
  Playbooks for SOC Analysts
  ☆579Updated 2 years ago
• Harden365 / Harden365
  Protect your data in minutes !
  ☆121Updated 9 months ago
• Bert-JanP / Incident-Response-Powershell
  PowerShell Digital Forensics & Incident Response Scripts.
  ☆684Updated last month
• gbrigandi / mcp-server-wazuh
  MCP Server for Wazuh SIEM
  ☆103Updated last month
• dbarzin / deming
  Management tool for the information security management system / Outil de gestion du système de management de la sécurité de l'informatio…
  ☆298Updated last week
• cert-advens / IRM
  ☆161Updated 10 months ago
• CrowdStrike / logscale-community-content
  This repository contains Community and Field contributed content for LogScale
  ☆258Updated last week
• juaromu / wazuh-opencti
  ☆37Updated 2 years ago
• skippernl / Fortigate2Excel
  Parse a fortigate configurationfile and export it to Excel
  ☆38Updated 6 months ago
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆131Updated 5 months ago
• Yamato-Security / EnableWindowsLogSettings
  Documentation and scripts to properly enable Windows event logs.
  ☆626Updated last year
• yuriskinfo / Fortinet-tools
  Tools to help you with daily tasks of configuring/debugging/monitoring Fortinet products - Fortigate, FortiAnalyzer, Fortimanager. I do n…
  ☆103Updated 2 months ago
• xephora / Threat-Remediation-Scripts
  This repository contains a list of new remediation scripts.
  ☆141Updated last month
• cyb3rmik3 / MDE-DFIR-Resources
  A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …
  ☆411Updated 3 weeks ago