Sysmon and wazuh integration with Sigma sysmon rules [updated]
☆74Jul 21, 2021Updated 4 years ago
Alternatives and similar repositories for sysmon
Users that are interested in sysmon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆97Apr 13, 2022Updated 4 years ago
- ☆23Mar 1, 2022Updated 4 years ago
- ☆19Oct 20, 2021Updated 4 years ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆28Jul 21, 2020Updated 5 years ago
- Our collection of Wazuh detection rules for our Offense Lab☆20Feb 13, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆12Jun 20, 2020Updated 5 years ago
- Useful scripts for those administering Wazuh☆95Jan 6, 2026Updated 4 months ago
- ☆21Oct 17, 2021Updated 4 years ago
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆40Jun 8, 2020Updated 5 years ago
- Tools to integrate 2 great security tools OPNsense and Wazuh☆33Aug 26, 2021Updated 4 years ago
- ☆21Jan 20, 2023Updated 3 years ago
- Wazuh - Chef cookbooks☆25Jul 26, 2023Updated 2 years ago
- SIAC is an enterprise SIEM built on open-source technology.☆114Oct 31, 2018Updated 7 years ago
- Tools for Wazuh by Juan C. Tello☆16Jan 13, 2022Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆43Aug 26, 2023Updated 2 years ago
- Django middleware and signals for handling security events☆14Apr 14, 2021Updated 5 years ago
- Wazuh REST API in Go☆16Dec 15, 2023Updated 2 years ago
- Personal scripts☆15Sep 11, 2024Updated last year
- Globally distributed honeypots and HoneyNets IOCs and file reversing☆16Apr 22, 2024Updated 2 years ago
- Wazuh - Puppet module☆55May 15, 2026Updated last week
- ☆13Apr 8, 2022Updated 4 years ago
- Centralized Active Directory Auditing Tool☆21Oct 28, 2022Updated 3 years ago
- ☆15Jun 4, 2018Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Log Entry to Sigma Rule Converter☆107Mar 3, 2022Updated 4 years ago
- NIST based open source security automation delivered as AWS cloudformation☆21Jan 8, 2020Updated 6 years ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆27Jul 27, 2020Updated 5 years ago
- opsi-script aka. opsi-winst and other various tools.☆10May 8, 2026Updated 2 weeks ago
- Zabbix Templates and scripts to monitor OSSEC or Wazuh Manager Intrusion Detection☆16Sep 18, 2025Updated 8 months ago
- This is the official repository for Basic Malware Analysis Course☆21Jan 11, 2022Updated 4 years ago
- ☆25Jul 27, 2023Updated 2 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…☆12Apr 13, 2017Updated 9 years ago
- Sysmon Tools for PowerShell☆12Aug 17, 2018Updated 7 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆1,306Mar 11, 2026Updated 2 months ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆35Jul 8, 2019Updated 6 years ago
- With the help of this docker image, you can easily access PEzor on your system!☆15Mar 10, 2022Updated 4 years ago
- If you a security engineer or an aspirant Security professional then Setting up a Wazuh home lab environment is an excellent way for SOC …☆21Mar 27, 2024Updated 2 years ago
- Open-source powered SIEM, Vulnerability Scanning, Host- & Network-IDS. Built upon Elastic Stack, OpenVAS, Suricata. Wrapped in a Python F…☆16Sep 2, 2022Updated 3 years ago
- windows内核安全与驱动开发代码☆12Apr 4, 2020Updated 6 years ago
- Monitoring a Kubernetes cluster involves deploying and utilizing the Wazuh agent within the Kubernetes environment.☆75Updated this week