This project automates SOC workflows using Wazuh, Shuffle, and TheHive. It involves setting up a Windows 10 client with Sysmon and Ubuntu 22.04 for Wazuh and TheHive, deployed on cloud or VMs. Goals: automate event collection, alerting, and incident response to enhance SOC efficiency.
☆37Jun 7, 2024Updated last year
Alternatives and similar repositories for SOC-Automation-Lab
Users that are interested in SOC-Automation-Lab are comparing it to the libraries listed below
Sorting:
- ☆28Dec 27, 2023Updated 2 years ago
- Cyber Security resource list☆18Jan 21, 2025Updated last year
- Beginner-friendly web penetration testing projects for hands-on learning.☆36May 23, 2024Updated last year
- Setting up Active Directory with an Ansible Playbook and create some groups and users☆17Jun 9, 2023Updated 2 years ago
- A python script to check printer across the world that allow printing on port 9100 trough pjl☆14Dec 27, 2024Updated last year
- ☆16Jul 8, 2024Updated last year
- ☆12Jun 4, 2025Updated 9 months ago
- ☆22Feb 3, 2026Updated last month
- “Intelliroot Code Injection Hunter” is a tool that can to help you identify injected malicious code. The tool can identify and extract po…☆16Sep 21, 2022Updated 3 years ago
- SOAR Automation with Shuffle, Wazuh & TheHive | This project integrates Shuffle SOAR, Wazuh SIEM, and TheHive to automate security incide…☆124Feb 21, 2025Updated last year
- T-Guard Repository☆18May 2, 2024Updated last year
- Scripts I have made for blue team☆16Apr 1, 2018Updated 7 years ago
- Comprehensive SOC Analyst notes covering incident response, threat hunting, SOC workflows, and cybersecurity concepts—perfect for exam pr…☆114Feb 26, 2026Updated 3 weeks ago
- This repository contains steps on how i set up a basic home lab running Active Directory.☆36Apr 2, 2023Updated 2 years ago
- A Simple JS code to keylogger data and send it to the personal server☆31Dec 30, 2024Updated last year
- Course Setup for the Cybersecurity Defender in 4 weeks course by Omar Santos☆20Jul 29, 2021Updated 4 years ago
- Content and collateral for the Microsoft Sentinel SOC 101 series☆207Feb 12, 2024Updated 2 years ago
- Useful resources for SOC Analyst and SOC Analyst candidates.☆902Aug 28, 2023Updated 2 years ago
- ☆69May 3, 2021Updated 4 years ago
- UNI-2021-2025☆10Aug 7, 2024Updated last year
- A list of Mind-Map for those interested in getting started in bug bounties.☆17Jul 9, 2021Updated 4 years ago
- forka ai fazeno favor vai q cai mia conta 👍☆10Aug 29, 2022Updated 3 years ago
- Hanime.tv stremio addon☆17Feb 10, 2026Updated last month
- This is a gui interface for airmon-ng☆14Mar 23, 2023Updated 2 years ago
- An advanced AI-driven vulnerability scanner and penetration testing tool that integrates multiple AI providers (OpenAI, Grok, OLLAMA, Cla…☆35Nov 7, 2025Updated 4 months ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆26Jul 27, 2020Updated 5 years ago
- ☆13Aug 1, 2023Updated 2 years ago
- Very Vulnerable Management API (VVMA) is a deliberately insecure RESTful API built with Node.js for educational and testing purposes. It …☆70Jun 5, 2025Updated 9 months ago
- YouTube music API client library based on Innertube API for Dart & Flutter☆12Sep 26, 2023Updated 2 years ago
- On-Premises Open Cyber Threat Intelligence Platform☆11Oct 29, 2024Updated last year
- A collection of 10 network security tools using Scapy for traffic analysis, penetration testing, and network manipulation. Ideal for cybe…☆17Oct 20, 2024Updated last year
- Challenges of the alpha ctf 2022☆13Jan 4, 2024Updated 2 years ago
- A SOC Analyst's tool to automate the investigation & validation of possible Indicators of Compromise (IOCs) and perform various tasks inc…☆29Jun 22, 2022Updated 3 years ago
- ☆18Apr 14, 2023Updated 2 years ago
- EduRansW (Vulnransomware) An safe-to-use vulnerable ransomware designed to learn about reversing and exploitation of basic ransomware vri…☆13May 22, 2025Updated 9 months ago
- Elevate your bug bounty game with our treasure trove of FREE resources! 🚀 Dive into a world of expert guides, cheat sheets, and tools to…☆22Oct 19, 2024Updated last year
- ☆34Jun 13, 2023Updated 2 years ago
- RedAudit is a next-generation Windows forensic and security assessment framework featuring a live cyber-operations GUI built for real inv…☆35Nov 15, 2025Updated 4 months ago
- DFIR Timeline Analysis for macOS — SQLite-backed viewer for CSV, TSV, XLSX, EVTX, Plaso, $MFT, and $J files with built-in process inspect…☆213Updated this week