Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.
☆576Jul 6, 2026Updated this week
Alternatives and similar repositories for UTMStack
Users that are interested in UTMStack are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection…☆742Apr 2, 2026Updated 3 months ago
- Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables…☆142Jan 22, 2026Updated 5 months ago
- Collaborative Incident Response platform☆1,518Jul 3, 2026Updated last week
- A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB☆19Mar 15, 2024Updated 2 years ago
- Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.☆2,341Jul 3, 2026Updated last week
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆264Jul 2, 2026Updated last week
- The official website for The Discord Analytics for Risks & Threats Project.☆23Dec 29, 2025Updated 6 months ago
- Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own in…☆4,684Jul 2, 2026Updated last week
- Open Adversarial Exposure Validation Platform☆1,739Updated this week
- SIEM Tactics, Techiques, and Procedures☆720May 14, 2026Updated last month
- Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-t…☆1,441May 22, 2026Updated last month
- ☆47Jun 12, 2026Updated 3 weeks ago
- SOCFortress CoPilot☆503Jul 2, 2026Updated last week
- Digging Deeper....☆4,066Jun 24, 2026Updated 2 weeks ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆16,059Updated this week
- IntelOwl: manage your Threat Intelligence at scale☆4,610Jul 3, 2026Updated last week
- Crackme challenge☆17Nov 20, 2020Updated 5 years ago
- Open-source security automation platform for teams and AI agents☆3,707Jul 2, 2026Updated last week
- Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…☆163May 6, 2026Updated 2 months ago
- Link that! is a very simple self-hosted bookmark manager.☆15Feb 9, 2025Updated last year
- Automation tool for Windows Deception Host Burn-In☆85Dec 4, 2024Updated last year
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆1,348Mar 11, 2026Updated 3 months ago
- Generic Password Filter for Active Directory☆18Apr 12, 2021Updated 5 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- ☆12Dec 23, 2021Updated 4 years ago
- Comprehensive Cheat Sheet for Rapid7's Insight-IDR LEQL Search Language.☆11Mar 18, 2024Updated 2 years ago
- BlueSky OSINT Tool☆15Dec 10, 2024Updated last year
- An automated Adversary Emulation lab with terraform and MCP server. Build Caldera techniques and operations assisted with LLMs. Built f…☆212Nov 23, 2025Updated 7 months ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆190Feb 9, 2025Updated last year
- A simple vulnerability scanning application built with FastAPI. vulnerability-scanner open-source-security nmap-cve SIEM☆34Dec 21, 2025Updated 6 months ago
- CISO Assistant is a one-stop-shop GRC platform for Risk Management, AppSec, Compliance & Audit, TPRM, BIA, Privacy, and Reporting. It sup…☆4,209Updated this week
- Convert Sigma rules to SIEM queries, directly in your browser.☆119Jun 20, 2026Updated 2 weeks ago
- Fast Incident Response☆2,020Jun 13, 2026Updated 3 weeks ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- A tool for folks who `git clone` first and ask questions later☆70Apr 15, 2026Updated 2 months ago
- A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.☆671Updated this week
- Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.☆3,238Updated this week
- C & Shellcode Playground..☆10Dec 2, 2017Updated 8 years ago
- ☆43Aug 26, 2023Updated 2 years ago
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆760Feb 1, 2026Updated 5 months ago
- ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…☆532Updated this week