Alternatives and similar repositories for OSSIEM

Users that are interested in OSSIEM are comparing it to the libraries listed below

• dLoProdz / OSSIEM
  Open Source SIEM Stack
  ☆24Updated 8 months ago
• socfortress / CoPilot
  SOCFortress CoPilot
  ☆287Updated this week
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆29Updated 8 months ago
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆84Updated 2 weeks ago
• itiligent / Easy-OpenVAS-Installer
  2025 OpenVAS appliance install & upgrade scripts, includes https front end (self signed), authenticated SMB scanning & email reports
  ☆70Updated 3 months ago
• yevonnaelandrew / t-guard
  T-Guard Repository
  ☆16Updated last year
• juaromu / wazuh-opencti
  ☆35Updated last year
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆109Updated 2 years ago
• gbrigandi / mcp-server-wazuh
  MCP Server for Wazuh SIEM
  ☆51Updated this week
• tguard-soc-package / nusantara
  ☆213Updated last year
• MISP / misp-docker
  A production ready Dockered MISP
  ☆246Updated 2 weeks ago
• ls111-cybersec / thehive-cortex-misp-docker-compose-lab11update
  ☆28Updated last year
• OpenSecureCo / Wazuh-Rules-1
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆13Updated 2 years ago
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆128Updated 3 months ago
• socfortress / Wazuh-Rules
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆771Updated last week
• socfortress / iris-wazuhindexer-module
  IRIS Module for Wazuh-Indexer Searching
  ☆10Updated last year
• bgenev / impulse-xdr
  Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables…
  ☆136Updated last year
• nateuribe / Wazuh-IRIS-integration
  (Unofficial) Wazuh integration to send alerts to IRIS.
  ☆17Updated 5 months ago
• TheHive-Project / Docker-Templates
  Docker configurations for TheHive, Cortex and 3rd party tools
  ☆126Updated 2 years ago
• OWASP / www-project-it-grc
  OWASP Foundation Web Respository
  ☆54Updated 3 weeks ago
• crow1011 / wazuh2thehive
  Wazuh integration TheHive
  ☆36Updated 2 years ago
• OpenSecureCo / Wazuh
  ☆31Updated 3 years ago
• NotLoBi / NotLoBi
  COMPLETE OSINT CHEAT-SHEET
  ☆91Updated this week
• splunk / DECEIVE
  DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!
  ☆257Updated last week
• lawrencesystems / graylog_extractors
  ☆62Updated last month
• arsolutioner / fortigate-belsen-leak
  Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Group
  ☆87Updated 5 months ago
• 0xvext / proxmox-seconiontap.sh
  A bash script to create a persistent port mirror for an IDS within a Proxmox hypervisor
  ☆20Updated 6 years ago
• ls111-cybersec / wazuh-thehive-integration-ep13
  ☆18Updated last year
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆93Updated 3 years ago
• bitorscanner / Bitor
  Bitor Scanning Software
  ☆383Updated last month