Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
☆1,264Mar 11, 2026Updated 2 weeks ago
Alternatives and similar repositories for Wazuh-Rules
Users that are interested in Wazuh-Rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Useful scripts for those administering Wazuh☆93Jan 6, 2026Updated 2 months ago
- SOCFortress CoPilot☆452Updated this week
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆32Sep 26, 2024Updated last year
- Wazuh integration TheHive☆41Feb 21, 2023Updated 3 years ago
- IRIS Module for Wazuh-Indexer Searching☆11Nov 24, 2023Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Convert Sigma rules to Wazuh rules☆74Sep 13, 2025Updated 6 months ago
- Playbooks for SOC Analysts☆694Dec 11, 2022Updated 3 years ago
- Open Source SIEM Stack☆141Feb 11, 2026Updated last month
- ☆41Aug 26, 2023Updated 2 years ago
- Our collection of Wazuh detection rules for our Offense Lab☆18Feb 13, 2022Updated 4 years ago
- Wazuh - Ruleset☆509Sep 19, 2024Updated last year
- Sigma to Wazuh rule converter☆18Sep 28, 2025Updated 6 months ago
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆15,039Updated this week
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆96Apr 13, 2022Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- A configuration to allow Wazuh to communicate with ChatGPT, based on https://loggar.hashnode.dev/augmenting-wazuh-with-chatgpt-integratio…☆24Mar 20, 2023Updated 3 years ago
- Repo to hold wazuh manager mcp server☆75Sep 22, 2025Updated 6 months ago
- Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.☆2,221Mar 18, 2026Updated last week
- In this projects are custom-decoders and custom-rules for Wazuh by me. Feel free to use it, you can redistribute it and/or modify it unde…☆60Mar 7, 2026Updated 3 weeks ago
- ☆20Jan 20, 2023Updated 3 years ago
- Collaborative Incident Response platform☆1,446Feb 16, 2026Updated last month
- Tools to integrate 2 great security tools OPNsense and Wazuh☆31Aug 26, 2021Updated 4 years ago
- Wazuh prometheus exporter☆35Jul 4, 2025Updated 8 months ago
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆13Aug 19, 2022Updated 3 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Wazuh extension looking up alert data against indicators in OpenCTI threat intel☆21Feb 4, 2024Updated 2 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆72Jul 21, 2021Updated 4 years ago
- ☆22Mar 1, 2022Updated 4 years ago
- ☆20Oct 17, 2021Updated 4 years ago
- Main Sigma Rule Repository☆10,224Mar 19, 2026Updated last week
- A repository of sysmon configuration modules☆2,996Aug 21, 2024Updated last year
- Digging Deeper....☆3,855Updated this week
- ☆221May 9, 2024Updated last year
- Tools for Wazuh by Juan C. Tello☆15Jan 13, 2022Updated 4 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Your Open-Source SOC Assistant☆12Apr 5, 2023Updated 2 years ago
- (Unofficial) Wazuh integration to send alerts to IRIS.☆22Jan 1, 2025Updated last year
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,484Mar 2, 2026Updated 3 weeks ago
- Open Cyber Threat Intelligence Platform☆9,067Updated this week
- Wazuh - Docker containers☆1,059Mar 20, 2026Updated last week
- Zabbix Templates and scripts to monitor OSSEC or Wazuh Manager Intrusion Detection☆14Sep 18, 2025Updated 6 months ago
- IRIS Module to Run Any Velociraptor Artifact☆15Mar 31, 2023Updated 2 years ago