Alternatives and similar repositories for StoW

Users that are interested in StoW are comparing it to the libraries listed below

• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆30Updated last year
• dariommr / scripts
  Personal scripts
  ☆15Updated last year
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆112Updated 3 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆72Updated 3 weeks ago
• juaromu / wazuh-domain-stats-alienvault
  ☆17Updated 3 years ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆70Updated 4 years ago
• bruneaug / DShield-SIEM
  DShield Sensor Log Collection with ELK
  ☆40Updated last week
• MHaggis / ClickGrab
  Finding ClickFix and FakeCAPTCHA like it's 1999
  ☆61Updated last week
• hackertarget / pcap-did-what
  Analyze pcaps with Zeek and a Grafana Dashboard
  ☆185Updated last year
• elastic / detection-rules-explorer
  ☆21Updated this week
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆86Updated last week
• referefref / sinon
  Automation tool for Windows Deception Host Burn-In
  ☆86Updated 10 months ago
• PacktPublishing / Security-Monitoring-using-Wazuh
  Security Monitoring using Wazuh, published by Packt
  ☆29Updated last year
• 0xbad53c / wazuh-detection-rules
  Our collection of Wazuh detection rules for our Offense Lab
  ☆16Updated 3 years ago
• M00NLIG7 / ChopChopGo
  Rapidly Search and Hunt through Linux Forensics Artifacts
  ☆199Updated last year
• OpenAEV-Platform / docker
  OpenAEV Docker deployment helpers
  ☆23Updated last week
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆137Updated 6 months ago
• SophosRapidResponse / OSQuery
  ☆87Updated 6 months ago
• nasbench / Eventlog_Compendium
  The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.
  ☆49Updated 5 months ago
• juaromu / wazuh
  ☆19Updated 3 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆73Updated 2 weeks ago
• cisagov / playbook-ng
  Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…
  ☆144Updated last week
• joeavanzato / ThreatSim
  Threat Simulator for Enterprise Networks
  ☆14Updated 3 years ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆177Updated 8 months ago
• ekky19 / osint
  Have you ever wanted to search a link or IP address on multiple OSINT pages at once?
  ☆57Updated 2 months ago
• InfoSecInnovations / What2Log
  ☆41Updated 2 years ago
• infosecB / Rulehound
  An index of publicly available and open-source threat detection rulesets.
  ☆125Updated 5 months ago
• lawndoc / Respotter
  Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
  ☆197Updated last month
• infobloxopen / threat-intelligence
  ☆94Updated 2 weeks ago
• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆56Updated 3 months ago