This project automates SOC workflows using Wazuh, Shuffle, and TheHive. It involves setting up a Windows 10 client with Sysmon and Ubuntu 22.04 for Wazuh and TheHive, deployed on cloud or VMs. Goals: automate event collection, alerting, and incident response to enhance SOC efficiency.
☆41Jun 7, 2024Updated 2 years ago
Alternatives and similar repositories for SOC-Automation-Lab
Users that are interested in SOC-Automation-Lab are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆29Dec 27, 2023Updated 2 years ago
- ☆25Jul 27, 2023Updated 2 years ago
- Cyber Security resource list☆19Jan 21, 2025Updated last year
- ☆12Oct 15, 2024Updated last year
- Beginner-friendly web penetration testing projects for hands-on learning.☆42May 23, 2024Updated 2 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- ☆12Jun 4, 2025Updated last year
- ☆22Feb 3, 2026Updated 4 months ago
- “Intelliroot Code Injection Hunter” is a tool that can to help you identify injected malicious code. The tool can identify and extract po…☆16Sep 21, 2022Updated 3 years ago
- ☆62Jun 18, 2025Updated 11 months ago
- SOAR Automation with Shuffle, Wazuh & TheHive | This project integrates Shuffle SOAR, Wazuh SIEM, and TheHive to automate security incide…☆132Feb 21, 2025Updated last year
- T-Guard Repository☆18May 2, 2024Updated 2 years ago
- A Model Context Protocol (MCP) server that integrates Volatility 3 memory forensics framework with Claude☆38Jul 7, 2025Updated 11 months ago
- Comprehensive SOC Analyst notes covering incident response, threat hunting, SOC workflows, and cybersecurity concepts—perfect for exam pr…☆124Feb 26, 2026Updated 3 months ago
- Course Setup for the Cybersecurity Defender in 4 weeks course by Omar Santos☆20Jul 29, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Content and collateral for the Microsoft Sentinel SOC 101 series☆215Feb 12, 2024Updated 2 years ago
- 🚀 CSRFShark - a utility for manipulating cross-site request forgery attacks☆37Sep 12, 2023Updated 2 years ago
- A collection of Ansible automation roles for my homelab.☆13Jan 17, 2025Updated last year
- a tiny program to consume from ETW providers for research☆55Jan 4, 2025Updated last year
- forka ai fazeno favor vai q cai mia conta 👍☆10Aug 29, 2022Updated 3 years ago
- ☆13Aug 1, 2023Updated 2 years ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆27Jul 27, 2020Updated 5 years ago
- A collection of 10 network security tools using Scapy for traffic analysis, penetration testing, and network manipulation. Ideal for cybe…☆17Oct 20, 2024Updated last year
- On-Premises Open Cyber Threat Intelligence Platform☆11Oct 29, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- YouTube music API client library based on Innertube API for Dart & Flutter☆12Sep 26, 2023Updated 2 years ago
- ☆18Apr 14, 2023Updated 3 years ago
- setting up Mac as much as automatically!☆11Apr 19, 2026Updated last month
- Cybersecurity Free Resources | This repo collects 14 of free resources for Cybersecurity. 🛡️ Arm yourself with knowledge from our Cybers…☆65May 1, 2025Updated last year
- Cisco Certified CyberOps Associate 200-201 Certification Guide, published by Packt☆29Jan 30, 2023Updated 3 years ago
- Use this tools properly Only for education purpose☆11Jul 27, 2023Updated 2 years ago
- This application contains intentional security vulnerabilities and should never be deployed in production environments or exposed to the …☆17Apr 25, 2025Updated last year
- A cloud starter kit for beginners — deploy to AWS using Terraform and GitHub Actions, no setup stress.☆17Jun 1, 2025Updated last year
- CTI Expert — Cyber Threat Intelligence & OSINT analysis skill for Claude Code. 67+ commands, 35 techniques, no API keys required.☆108Jun 2, 2026Updated last week
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A torrent stream player.☆16Oct 8, 2023Updated 2 years ago
- EduRansW (Vulnransomware) An safe-to-use vulnerable ransomware designed to learn about reversing and exploitation of basic ransomware vri…☆15May 22, 2025Updated last year
- Deploy your DNS configuration using GitHub Actions using DNSControl.☆12Apr 15, 2026Updated last month
- ☆12Aug 5, 2024Updated last year
- API Penetration Testing Notes☆19Sep 25, 2025Updated 8 months ago
- Gungnir - Homelab Automation Tool to Guard your very own Asgard☆16Jan 26, 2026Updated 4 months ago
- An advanced AI-driven vulnerability scanner and penetration testing tool that integrates multiple AI providers (OpenAI, Grok, OLLAMA, Cla…☆35Nov 7, 2025Updated 7 months ago