Open Source SIEM Stack
☆148Apr 25, 2026Updated 2 weeks ago
Alternatives and similar repositories for OSSIEM
Users that are interested in OSSIEM are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SOCFortress CoPilot☆485Updated this week
- Open Source SIEM Stack☆29Oct 15, 2024Updated last year
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆1,300Mar 11, 2026Updated last month
- A detailed list of potentially dangerous file extensions☆18Jun 18, 2025Updated 10 months ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆33Sep 26, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- OpenAEV Docker deployment helpers☆29Updated this week
- Ansible playbook to convert Sigma rules to ElastAlert rules☆10Feb 5, 2021Updated 5 years ago
- Repo for experimenting and testing MCP server builds for CTI-related research.☆27May 13, 2025Updated 11 months ago
- ☆30Aug 21, 2024Updated last year
- Collaborative, web-based case management for incident response☆24Jan 23, 2024Updated 2 years ago
- Python client and module for Vulnerability-Lookup.☆16Apr 28, 2026Updated last week
- Wfuzz fork☆41Jan 10, 2025Updated last year
- 🎮 AI-powered solo mode for Backdoors & Breaches. Train incident response skills anytime with an LLM Incident Master. Arcade-themed fork …☆28Dec 27, 2025Updated 4 months ago
- Files related to my Graylog home lab setup☆25Dec 5, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Playbooks for SOC Analysts☆712Dec 11, 2022Updated 3 years ago
- T-Guard Repository☆17May 2, 2024Updated 2 years ago
- Singul: Connect to your favorite services with a Singul line of code.☆25Updated this week
- Deploy pfelk with docker-compose☆54Aug 13, 2023Updated 2 years ago
- This repository will describe the details surrounding the SIEM (wazuh) mini project, which will cover all aspects of topology design, dep…☆30Mar 19, 2023Updated 3 years ago
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆14Jul 24, 2021Updated 4 years ago
- These are installation notes based on Mayfly's installation notes. They are more streamlined for Vagrant as I did not take the Docker rou…☆27Jun 19, 2024Updated last year
- Security Operations Chef☆59Jan 18, 2026Updated 3 months ago
- An Exploitation script developed to exploit the CVE-2023-4966 bleed citrix information disclosure vulnerability☆10Oct 29, 2023Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Bash script to retrieve metadata from MAL and Anilist and import it to plex with a kometa metadata file☆21Nov 8, 2025Updated 6 months ago
- Repo to hold wazuh manager mcp server☆81Apr 15, 2026Updated 3 weeks ago
- Wazuh - Docker containers☆1,084Updated this week
- Lokix Platform is a free open-source solution to help blue teams and threat hunters use Loki Scanner to sweep enterprise networks☆25Aug 8, 2020Updated 5 years ago
- MISP website (hugo-based)☆25Apr 30, 2026Updated last week
- A Docker lab integrating Splunk SIEM with Ollama LLM via MCP for AI security operations. Features Promptfoo OWASP evaluation, TA-ollama a…☆29Mar 8, 2026Updated 2 months ago
- ☆15Aug 12, 2024Updated last year
- Monitoring Windows processes tool for malware analysis. Inspired by Regshot tool.☆13Jun 24, 2024Updated last year
- 🛡️Awesome lists about all kinds of interesting topics of Wazuh XDR/SIEM☆124Apr 27, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- An automated Adversary Emulation lab with terraform and MCP server. Build Caldera techniques and operations assisted with LLMs. Built f…☆209Nov 23, 2025Updated 5 months ago
- Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.☆2,274May 1, 2026Updated last week
- OSSEM Data Dictionaries☆65Jan 22, 2025Updated last year
- Improved version. Based off original CopyClass Code From Meriac http://www.openpcd.org/HID_iClass_demystified☆29Mar 13, 2014Updated 12 years ago
- ☆33Mar 24, 2026Updated last month
- ☆18Apr 8, 2026Updated last month
- The official Prelude SIEM GitHub of https://www.prelude-siem.org☆42Jun 12, 2016Updated 9 years ago