socfortress / wazuh-mcp-serverLinks
Repo to hold wazuh manager mcp server
☆71Updated 3 months ago
Alternatives and similar repositories for wazuh-mcp-server
Users that are interested in wazuh-mcp-server are comparing it to the libraries listed below
Sorting:
- Automation tool for Windows Deception Host Burn-In☆86Updated last year
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆55Updated 2 months ago
- YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection☆100Updated 2 weeks ago
- Mapping of open-source detection rules and atomic tests.☆193Updated last year
- Analyze pcaps with Zeek and a Grafana Dashboard☆189Updated last year
- ThreatSeeker: Threat Hunting via Windows Event Logs☆123Updated 2 years ago
- A web application that allows the users to check whether their SPF, DMARC and DKIM configuration is set up correctly.☆190Updated 2 weeks ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆185Updated 11 months ago
- AuditKit - Multi-Cloud Compliance Scanner & Evidence Collection☆238Updated last week
- Create honeypots for cloud environments☆109Updated 3 months ago
- Interactive simulation of a fictional ransomware group's dashboard☆12Updated last year
- MCP Server for Wazuh SIEM☆164Updated last month
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆32Updated last year
- Splunk add-on related to the PurpleLab tool☆41Updated last year
- Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Group☆86Updated last year
- Modern honeypot supporting multiple services, realistic website cloning, and AI-powered features☆156Updated last month
- Cybether - A modern, open-source Cybersecurity Governance, Risk, and Compliance (GRC) dashboard☆85Updated last month
- 🛡️ VIPER: Stay ahead of threats with AI-driven vulnerability intelligence. Prioritize CVEs effectively using NVD, EPSS, CISA KEV, and Go…☆81Updated 5 months ago
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆82Updated 9 months ago
- ☆219Updated last year
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆132Updated last year
- An index of publicly available and open-source threat detection rulesets.☆130Updated 9 months ago
- Permiso Security has created a tool to query snowflake environments for evidence of compromise, based on indicators from Permiso and the …☆73Updated last year
- ☆40Updated 2 years ago
- An automated Adversary Emulation lab with terraform and MCP server. Build Caldera techniques and operations assisted with LLMs. Built f…☆204Updated last month
- ☆75Updated 10 months ago
- CyberSecurity BLUE TEAM containerized platform that brings together open-source tools for SIEM, DFIR, CTI, SOAR, and Network Analysis☆440Updated 3 months ago
- A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.☆433Updated 3 months ago
- ☆119Updated 7 months ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆83Updated last month