Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
☆1,331Mar 11, 2026Updated 3 months ago
Alternatives and similar repositories for Wazuh-Rules
Users that are interested in Wazuh-Rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Useful scripts for those administering Wazuh☆97Jan 6, 2026Updated 5 months ago
- SOCFortress CoPilot☆497Updated this week
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆33Sep 26, 2024Updated last year
- Wazuh integration TheHive☆42Feb 21, 2023Updated 3 years ago
- IRIS Module for Wazuh-Indexer Searching☆12Nov 24, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Playbooks for SOC Analysts☆721Dec 11, 2022Updated 3 years ago
- Convert Sigma rules to Wazuh rules☆77Sep 13, 2025Updated 9 months ago
- Open Source SIEM Stack☆147Updated this week
- ☆43Aug 26, 2023Updated 2 years ago
- Wazuh - Ruleset☆522Sep 19, 2024Updated last year
- Our collection of Wazuh detection rules for our Offense Lab☆20Feb 13, 2022Updated 4 years ago
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆15,895Updated this week
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆97Apr 13, 2022Updated 4 years ago
- A configuration to allow Wazuh to communicate with ChatGPT, based on https://loggar.hashnode.dev/augmenting-wazuh-with-chatgpt-integratio…☆25Mar 20, 2023Updated 3 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.☆2,322Jun 9, 2026Updated last week
- ☆21Jan 20, 2023Updated 3 years ago
- In this projects are custom-decoders and custom-rules for Wazuh by me. Feel free to use it, you can redistribute it and/or modify it unde…☆64Mar 7, 2026Updated 3 months ago
- Repo to hold wazuh manager mcp server☆83Apr 15, 2026Updated 2 months ago
- Collaborative Incident Response platform☆1,507Jun 8, 2026Updated last week
- Sigma to Wazuh rule converter☆23Apr 28, 2026Updated last month
- Tools to integrate 2 great security tools OPNsense and Wazuh☆33Aug 26, 2021Updated 4 years ago
- Wazuh prometheus exporter☆35Jul 4, 2025Updated 11 months ago
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆13Aug 19, 2022Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Wazuh extension looking up alert data against indicators in OpenCTI threat intel☆22Feb 4, 2024Updated 2 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆73Jul 21, 2021Updated 4 years ago
- ☆23Mar 1, 2022Updated 4 years ago
- ☆21Oct 17, 2021Updated 4 years ago
- Main Sigma Rule Repository☆10,585Updated this week
- A repository of sysmon configuration modules☆3,057Aug 21, 2024Updated last year
- Digging Deeper....☆4,011Updated this week
- ☆218May 9, 2024Updated 2 years ago
- Tools for Wazuh by Juan C. Tello☆16Jan 13, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Your Open-Source SOC Assistant☆12Apr 5, 2023Updated 3 years ago
- (Unofficial) Wazuh integration to send alerts to IRIS.☆23Jan 1, 2025Updated last year
- Wazuh - Docker containers☆1,121Updated this week
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,566May 9, 2026Updated last month
- Open Cyber Threat Intelligence Platform☆9,557Updated this week
- Zabbix Templates and scripts to monitor OSSEC or Wazuh Manager Intrusion Detection☆16Sep 18, 2025Updated 9 months ago
- IRIS Module to Run Any Velociraptor Artifact☆15Mar 31, 2023Updated 3 years ago