Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
☆1,348Mar 11, 2026Updated 3 months ago
Alternatives and similar repositories for Wazuh-Rules
Users that are interested in Wazuh-Rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Useful scripts for those administering Wazuh☆97Jan 6, 2026Updated 6 months ago
- SOCFortress CoPilot☆503Jul 2, 2026Updated last week
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆33Sep 26, 2024Updated last year
- Wazuh integration TheHive☆42Feb 21, 2023Updated 3 years ago
- IRIS Module for Wazuh-Indexer Searching☆12Nov 24, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Open Source SIEM Stack☆149Jun 15, 2026Updated 3 weeks ago
- Playbooks for SOC Analysts☆729Dec 11, 2022Updated 3 years ago
- Convert Sigma rules to Wazuh rules☆77Sep 13, 2025Updated 9 months ago
- ☆43Aug 26, 2023Updated 2 years ago
- Wazuh - Ruleset☆524Sep 19, 2024Updated last year
- Our collection of Wazuh detection rules for our Offense Lab☆20Feb 13, 2022Updated 4 years ago
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆16,059Updated this week
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆97Apr 13, 2022Updated 4 years ago
- A configuration to allow Wazuh to communicate with ChatGPT, based on https://loggar.hashnode.dev/augmenting-wazuh-with-chatgpt-integratio…☆25Mar 20, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.☆2,341Updated this week
- ☆21Jan 20, 2023Updated 3 years ago
- In this projects are custom-decoders and custom-rules for Wazuh by me. Feel free to use it, you can redistribute it and/or modify it unde…☆65Mar 7, 2026Updated 4 months ago
- Repo to hold wazuh manager mcp server☆85Apr 15, 2026Updated 2 months ago
- Collaborative Incident Response platform☆1,518Updated this week
- Sigma to Wazuh rule converter☆23Apr 28, 2026Updated 2 months ago
- Tools to integrate 2 great security tools OPNsense and Wazuh☆34Aug 26, 2021Updated 4 years ago
- Wazuh prometheus exporter☆35Jul 4, 2025Updated last year
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆13Aug 19, 2022Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Wazuh extension looking up alert data against indicators in OpenCTI threat intel☆22Feb 4, 2024Updated 2 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆73Jul 21, 2021Updated 4 years ago
- ☆23Mar 1, 2022Updated 4 years ago
- ☆21Oct 17, 2021Updated 4 years ago
- Main Sigma Rule Repository☆10,707Updated this week
- A repository of sysmon configuration modules☆3,074Jun 25, 2026Updated 2 weeks ago
- Digging Deeper....☆4,066Jun 24, 2026Updated 2 weeks ago
- ☆218May 9, 2024Updated 2 years ago
- Tools for Wazuh by Juan C. Tello☆16Jan 13, 2022Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Your Open-Source SOC Assistant☆12Apr 5, 2023Updated 3 years ago
- (Unofficial) Wazuh integration to send alerts to IRIS.☆23Jan 1, 2025Updated last year
- Wazuh - Docker containers☆1,131Updated this week
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,583May 9, 2026Updated 2 months ago
- Open Cyber Threat Intelligence Platform☆9,650Updated this week
- Zabbix Templates and scripts to monitor OSSEC or Wazuh Manager Intrusion Detection☆16Sep 18, 2025Updated 9 months ago
- IRIS Module to Run Any Velociraptor Artifact☆15Mar 31, 2023Updated 3 years ago