Alternatives and similar repositories for OSSIEM

Users that are interested in OSSIEM are comparing it to the libraries listed below

• socfortress / CoPilot
  SOCFortress CoPilot
  ☆275Updated this week
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆29Updated 7 months ago
• dLoProdz / OSSIEM
  Open Source SIEM Stack
  ☆21Updated 6 months ago
• itiligent / Easy-OpenVAS-Installer
  2025 OpenVAS appliance install & upgrade scripts, includes https front end (self signed), authenticated SMB scanning & email reports
  ☆62Updated 2 months ago
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆83Updated this week
• yevonnaelandrew / t-guard
  T-Guard Repository
  ☆13Updated last year
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆126Updated 2 months ago
• juaromu / wazuh-opencti
  ☆34Updated last year
• MISP / misp-docker
  A production ready Dockered MISP
  ☆233Updated this week
• ls111-cybersec / thehive-cortex-misp-docker-compose-lab11update
  ☆27Updated last year
• tguard-soc-package / nusantara
  ☆210Updated last year
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆109Updated 2 years ago
• alextibor / wazuh-fortigate-rules-decoders
  Decoders and Rules for Fortigate in Wazuh
  ☆34Updated last year
• socfortress / Wazuh-Rules
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆737Updated last week
• nateuribe / Wazuh-IRIS-integration
  (Unofficial) Wazuh integration to send alerts to IRIS.
  ☆17Updated 4 months ago
• sgInnora / sharpeye
  SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System
  ☆53Updated this week
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆92Updated 3 years ago
• arsolutioner / fortigate-belsen-leak
  Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Group
  ☆87Updated 3 months ago
• OpenSecureCo / Demos
  Repo Filled With Follow Along Guides
  ☆75Updated 2 years ago
• juaromu / wazuh-misp
  ☆17Updated 2 years ago
• cloudfence / opnsense-wazuh
  Tools to integrate 2 great security tools OPNsense and Wazuh
  ☆30Updated 3 years ago
• bgenev / impulse-xdr
  Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables…
  ☆132Updated last year
• utmstack / UTMStack
  Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.
  ☆270Updated this week
• aleksibovellan / opnsense-suricata-nmaps
  OPNSense's Suricata IDS/IPS Detection Rules Against NMAP Scans
  ☆68Updated 3 months ago
• OpenSecureCo / Wazuh
  ☆31Updated 3 years ago
• socfortress / iris-velociraptorartifact-module
  IRIS Module to Run Any Velociraptor Artifact
  ☆11Updated 2 years ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆37Updated 2 years ago
• hulkmode / echothreat
  ☆18Updated last week
• OpenSecureCo / Wazuh-Rules-1
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆12Updated 2 years ago
• orbitscanner / Bitor
  Bitor Scanning Software
  ☆376Updated last month