wazuh / wazuh-agent

Related projects ⓘ

Alternatives and complementary repositories for wazuh-agent

• MISP / misp-airgap
  Scripts to deploy and update MISP in air-gapped environments
  ☆16Updated 3 months ago
• greenbone / notus-scanner
  Notus is a vulnerability scanner for creating results from local security checks
  ☆41Updated this week
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆51Updated last year
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• eddie4 / geoip-attack-map
  Cyber security geoip attack map that follows syslog and parses IPs/port numbers to visualize attackers in real time.
  ☆9Updated 4 years ago
• sagarbhure / eBPFShield
  ☆60Updated last year
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆101Updated 4 months ago
• teler-sh / teler-resources
  teler Resource Collections
  ☆36Updated this week
• vulsio / go-cti
  Build a local copy of MITRE ATT&CK and CAPEC. Server mode for easy querying.
  ☆30Updated last month
• projectdiscovery / naabu-action
  A fast port scanner written in go with a focus on reliability and simplicity.
  ☆16Updated last month
• 0x00000013 / huakiwi
  eBPF-based EDR for Linux
  ☆15Updated 2 months ago
• CiscoPSIRT / openVulnQuery
  A Python-based client for the Cisco openVuln API
  ☆29Updated last year
• airbus-cert / dirtypipe-ebpf_detection
  An eBPF detection program for CVE-2022-0847
  ☆27Updated 2 years ago
• 0xN3utr0n / Kanis
  Advanced threat detection solution for Linux.
  ☆36Updated 3 years ago
• runZeroInc / recog
  Pattern recognition for hosts, services, and content
  ☆13Updated 2 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆59Updated 2 years ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 7 months ago
• alertflex / cnode
  alertflex controller
  ☆10Updated 10 months ago
• shadawck / awesome-endpoint-detection-and-response
  Collection of tool you need to have in your Endpoint Detection and Response arsenal
  ☆71Updated 8 months ago
• corelight / CVE-2021-42292
  A Zeek package to detect CVE-2021-42292, a Microsoft Excel local privilege escalation exploit.
  ☆19Updated 3 years ago
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆28Updated last year
• runZeroInc / recog-go
  Recog-Go: Pattern Recognition using Rapid7 Recog
  ☆103Updated last year
• projectdiscovery / nvd
  Fast, simple library in Go to fetch CVEs from the National Vulnerability Database feeds
  ☆25Updated last year
• christophetd / abusing-cloudflare-workers
  Abusing Cloudflare Workers to establish persistence and exfiltrate sensitive data at the edge.
  ☆12Updated 2 years ago
• opencve / opencve-docker
  Docker Image packaging for OpenCVE
  ☆41Updated last week
• netfoundry / zfw
  An EBPF based IPv4/IPv6 firewall with integrations for OpenZiti Zero-Trust Framework edge-routers and tunnellers
  ☆44Updated this week
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆29Updated last month
• kube-tarian / tarian
  Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…
  ☆54Updated 6 months ago
• tenable / audit_files
  Nessus Audit files
  ☆30Updated last year