utmstack / UTMStack
Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.
☆270Updated this week
Alternatives and similar repositories for UTMStack:
Users that are interested in UTMStack are comparing it to the libraries listed below
- Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables…☆132Updated last year
- ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…☆391Updated 3 weeks ago
- SOCFortress CoPilot☆275Updated this week
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆209Updated last week
- Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-…☆1,023Updated this week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆293Updated this week
- ☆259Updated 5 months ago
- Bitor Scanning Software☆376Updated last month
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆733Updated this week
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆268Updated this week
- 🤖 Admyral enables continuous control monitoring for any custom control☆328Updated 5 months ago
- Automation tool for Windows Deception Host Burn-In☆86Updated 5 months ago
- A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.☆385Updated this week
- Analyze pcaps with Zeek and a Grafana Dashboard☆174Updated 11 months ago
- Linux Security and Monitoring Scripts☆322Updated 7 months ago
- Transform Linux Audit logs for SIEM usage☆763Updated 2 weeks ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆405Updated this week
- Threat-hunting tool for Linux☆835Updated this week
- A website and framework for testing NIDS detection☆253Updated 7 months ago
- Add a layer of active defense to your cloud applications.☆92Updated last week
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆730Updated last month
- A production ready Dockered MISP☆229Updated this week
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆672Updated 3 months ago
- Useful templates and working document for implementing ISO 27001 - ISMS☆149Updated 2 weeks ago
- OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings☆17Updated 8 months ago
- Useful scripts for those administering Wazuh☆83Updated 3 months ago
- A curated list of Awesome Threat Intelligence Blogs☆390Updated 3 months ago
- ☆117Updated last week
- Docker image for MISP☆127Updated last month
- Open Adversary Exposure Validation Platform☆1,014Updated this week