Alternatives and similar repositories for OSSIEM:

Users that are interested in OSSIEM are comparing it to the libraries listed below

• socfortress / CoPilot
  SOCFortress CoPilot
  ☆275Updated this week
• socfortress / OSSIEM
  Open Source SIEM Stack
  ☆88Updated 2 months ago
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆83Updated 3 months ago
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆126Updated 2 months ago
• MISP / misp-docker
  A production ready Dockered MISP
  ☆229Updated this week
• socfortress / Wazuh-Rules
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆733Updated this week
• Harden365 / Harden365
  Protect your data in minutes !
  ☆118Updated 6 months ago
• AnonymousWP / Wazuh-ChatGPT-integration
  A configuration to allow Wazuh to communicate with ChatGPT, based on https://loggar.hashnode.dev/augmenting-wazuh-with-chatgpt-integratio…
  ☆21Updated 2 years ago
• xephora / Threat-Remediation-Scripts
  This repository contains a list of new remediation scripts.
  ☆119Updated 2 weeks ago
• alextibor / wazuh-fortigate-rules-decoders
  Decoders and Rules for Fortigate in Wazuh
  ☆34Updated last year
• madirish / ossocdocs
  Open Source Security Operations Center Documentation
  ☆179Updated this week
• CrowdStrike / logscale-community-content
  This repository contains Community and Field contributed content for LogScale
  ☆226Updated this week
• LoicVeirman / HardenAD
  Hardening Active Directory version 2
  ☆319Updated last month
• dinger1986 / TRMM-Grafana
  Grafana Dashboards setup and preconfigured to work with Tactical RMM
  ☆34Updated 5 months ago
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆29Updated 7 months ago
• EvotecIT / PasswordSolution
  This module allows the creation of password expiry emails for users, managers, administrators, and security according to defined template…
  ☆149Updated 3 weeks ago
• tguard-soc-package / nusantara
  ☆210Updated last year
• LoicVeirman / Hello-My-Dir
  This project is specifically made for brand new directory and ease their creation with all security rules in place.
  ☆101Updated last month
• MHaggis / PowerShell-Hunter
  PowerShell tools to help defenders hunt smarter, hunt harder.
  ☆372Updated 3 weeks ago
• utmstack / UTMStack
  Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.
  ☆270Updated this week
• itiligent / Easy-OpenVAS-Installer
  2025 OpenVAS appliance install & upgrade scripts, includes https front end (self signed), authenticated SMB scanning & email reports
  ☆62Updated 2 months ago
• juaromu / wazuh-opencti
  ☆34Updated last year
• Bert-JanP / Open-Source-Threat-Intel-Feeds
  This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…
  ☆672Updated 3 months ago
• Bert-JanP / Incident-Response-Powershell
  PowerShell Digital Forensics & Incident Response Scripts.
  ☆597Updated last month
• keyboardcrunch / sentinelone-queries
  Repository of SentinelOne Deep Visibility queries.
  ☆127Updated 3 years ago
• LETHAL-FORENSICS / Microsoft-Analyzer-Suite
  A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
  ☆460Updated 2 weeks ago
• cyb3rmik3 / MDE-DFIR-Resources
  A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …
  ☆391Updated 4 months ago
• Myohannn / CIS-Auditor-Windows
  A Windows CIS benchmark policy compliance auditor
  ☆50Updated last year
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆67Updated last month
• invictus-ir / Microsoft-Extractor-Suite
  A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.
  ☆623Updated this week