Open Source SIEM Stack
☆149Jun 15, 2026Updated 3 weeks ago
Alternatives and similar repositories for OSSIEM
Users that are interested in OSSIEM are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SOCFortress CoPilot☆503Jul 2, 2026Updated last week
- Open Source SIEM Stack☆30Oct 15, 2024Updated last year
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆1,348Mar 11, 2026Updated 3 months ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆33Sep 26, 2024Updated last year
- OpenAEV Docker deployment helpers☆30Jul 1, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Ansible playbook to convert Sigma rules to ElastAlert rules☆10Feb 5, 2021Updated 5 years ago
- ☆31Aug 21, 2024Updated last year
- Collaborative, web-based case management for incident response☆24Jan 23, 2024Updated 2 years ago
- An AI-driven vulnerability scanner that uses Nmap to discover open services on a user-supplied IP, matches each service to relevant CVEs …☆45Jun 1, 2025Updated last year
- Wfuzz fork☆44Jan 10, 2025Updated last year
- A command-line tool and module for the free Sublime Analysis API☆16Jun 18, 2024Updated 2 years ago
- 🎮 AI-powered solo mode for Backdoors & Breaches. Train incident response skills anytime with an LLM Incident Master. Arcade-themed fork …☆28Dec 27, 2025Updated 6 months ago
- Files related to my Graylog home lab setup☆25Dec 5, 2024Updated last year
- Playbooks for SOC Analysts☆729Dec 11, 2022Updated 3 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- This contains scripts, tools, and other programs I show case on my youtube channel.☆24Oct 30, 2025Updated 8 months ago
- T-Guard Repository☆18May 2, 2024Updated 2 years ago
- Singul: Connect to your favorite services with a Singul line of code.☆25May 7, 2026Updated 2 months ago
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆14Jul 24, 2021Updated 4 years ago
- These are installation notes based on Mayfly's installation notes. They are more streamlined for Vagrant as I did not take the Docker rou…☆27Jun 19, 2024Updated 2 years ago
- Wazuh - Docker containers☆1,126Jun 30, 2026Updated last week
- This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC a…☆736Sep 23, 2024Updated last year
- Repo to hold wazuh manager mcp server☆85Apr 15, 2026Updated 2 months ago
- Autonomous SOC analyst agent for SOCfortress CoPilot — auto-investigates alerts, enriches IOCs, and writes back findings using Claude + l…☆89Jun 18, 2026Updated 3 weeks ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Security Operations Chef☆100Jan 18, 2026Updated 5 months ago
- Splunk Technology Add-On (TA) for collecting ETW events from Windows systems☆16Dec 8, 2022Updated 3 years ago
- MISP website (hugo-based)☆25Jun 22, 2026Updated 2 weeks ago
- A Docker lab integrating Splunk SIEM with Ollama LLM via MCP for AI security operations. Features Promptfoo OWASP evaluation, TA-ollama a…☆31Updated this week
- An automated Adversary Emulation lab with terraform and MCP server. Build Caldera techniques and operations assisted with LLMs. Built f…☆212Nov 23, 2025Updated 7 months ago
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.☆2,341Updated this week
- OSSEM Data Dictionaries☆67Jan 22, 2025Updated last year
- ☆33Mar 24, 2026Updated 3 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Code that can be used to create/steal/manipulate token contexts in a program. Can be implemented into other C# projects.☆12Jan 3, 2019Updated 7 years ago
- ☆19Jan 3, 2025Updated last year
- The official Prelude SIEM GitHub of https://www.prelude-siem.org☆43Jun 12, 2016Updated 10 years ago
- List of NSO Pegasus's C2C Servers where will be used to control Pegasus.☆23Nov 2, 2025Updated 8 months ago
- Custom integration of Proxmox and Apache Guacamole for deploying and using virtual machines in one web client application☆29Jun 13, 2020Updated 6 years ago
- ☆10May 30, 2021Updated 5 years ago
- This contains a list of Blue Team Tools that I use daily, and have stored here for reference.☆34Nov 7, 2017Updated 8 years ago