wazuh/wazuh-ruleset

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/wazuh/wazuh-ruleset)

wazuh / wazuh-ruleset

Wazuh - Ruleset

☆513

Alternatives and similar repositories for wazuh-ruleset

Users that are interested in wazuh-ruleset are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

wazuh / wazuh-documentation
View on GitHub
Wazuh - Project documentation
☆258Updated this week
wazuh / wazuh-api
View on GitHub
Wazuh - RESTful API
☆81Sep 17, 2024Updated last year
wazuh / wazuh-dashboard-plugins
View on GitHub
Plugins for Wazuh Dashboard
☆507Updated this week
wazuh / wazuh-puppet
View on GitHub
Wazuh - Puppet module
☆55Apr 10, 2026Updated last week
wazuh / wazuh-ansible
View on GitHub
Wazuh - Ansible playbook
☆402Updated this week
Deploy open-source AI quickly and easily - Bonus Offer • Ad
Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
wazuh / wazuh-splunk
View on GitHub
Wazuh - Splunk App
☆57Sep 17, 2024Updated last year
wazuh / wazuh
View on GitHub
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
☆15,284Updated this week
wazuh / wazuh-packages
View on GitHub
Wazuh - Tools for packages creation
☆114Nov 25, 2024Updated last year
wazuh / wazuh-docker
View on GitHub
Wazuh - Docker containers
☆1,075Updated this week
wazuh / wazuh-kubernetes
View on GitHub
Wazuh - Wazuh Kubernetes
☆372Updated this week
socfortress / Wazuh-Rules
View on GitHub
Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
☆1,284Mar 11, 2026Updated last month
StamusNetworks / scirius
View on GitHub
Scirius is a web application for Suricata ruleset management and threat hunting.
☆674Dec 23, 2025Updated 3 months ago
wazuh / wazuh-security-dashboards-plugin
View on GitHub
Fork of OpenSearch Dashboards Security Plugin.
☆14Updated this week
BinaryDefense / auto-ossec
View on GitHub
☆142May 24, 2024Updated last year
Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
juaromu / wazuh-nmap
View on GitHub
☆23Mar 1, 2022Updated 4 years ago
ossec / ossec-hids
View on GitHub
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…
☆5,014Apr 11, 2026Updated last week
magenx / WAZUH-OSSEC
View on GitHub
WAZUH - The Open Source Security Platform Installation
☆90Oct 8, 2020Updated 5 years ago
wazuh / wazuh-qa
View on GitHub
Wazuh - Quality Assurance
☆70Oct 31, 2025Updated 5 months ago
branchnetconsulting / wazuh-tools
View on GitHub
Useful scripts for those administering Wazuh
☆95Jan 6, 2026Updated 3 months ago
SanWieb / sigWah
View on GitHub
A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
☆40Jun 8, 2020Updated 5 years ago
0xbad53c / wazuh-detection-rules
View on GitHub
Our collection of Wazuh detection rules for our Offense Lab
☆19Feb 13, 2022Updated 4 years ago
ossec / ossec-rules
View on GitHub
A repository for OSSEC rules and decoders
☆55Aug 9, 2023Updated 2 years ago
sametsazak / sysmon
View on GitHub
Sysmon and wazuh integration with Sigma sysmon rules [updated]
☆73Jul 21, 2021Updated 4 years ago
Managed Kubernetes at scale on DigitalOcean • Ad
DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
socfortress / SOCFortress-Threat-Intel
View on GitHub
Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
☆33Sep 26, 2024Updated last year
dcid / ossec-hids
View on GitHub
OSSEC HIDS - Sucuri Fork
☆11Feb 12, 2021Updated 5 years ago
palantir / osquery-configuration
View on GitHub
A repository for using osquery for incident detection and response
☆890Sep 8, 2025Updated 7 months ago
StamusNetworks / Clear-NDR-ISO
View on GitHub
A Suricata based NDR distribution
☆1,589Sep 13, 2025Updated 7 months ago
SigmaHQ / sigma
View on GitHub
Main Sigma Rule Repository
☆10,309Apr 1, 2026Updated 2 weeks ago
juaromu / wazuh
View on GitHub
☆21Oct 17, 2021Updated 4 years ago
dj-wasabi / ansible-ossec-agent
View on GitHub
Installing and maintaining the ossec-agent for RedHat/Debian/Ubuntu.
☆42Jan 31, 2021Updated 5 years ago
Security-Onion-Solutions / security-onion
View on GitHub
Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
☆3,114Apr 16, 2021Updated 5 years ago
wazuh / wazuh-cloudformation
View on GitHub
Wazuh - Amazon AWS Cloudformation
☆43Jul 26, 2023Updated 2 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
Neo23x0 / signature-base
View on GitHub
YARA signature and IOC database for my scanners and tools
☆2,917Updated this week
olafhartong / sysmon-modular
View on GitHub
A repository of sysmon configuration modules
☆3,016Aug 21, 2024Updated last year
Neo23x0 / Loki
View on GitHub
Loki - Simple IOC and YARA Scanner
☆3,743Jan 12, 2026Updated 3 months ago
Hestat / ossec-sysmon
View on GitHub
A Ruleset to enhance detection capabilities of Ossec using Sysmon
☆97Apr 13, 2022Updated 4 years ago
wazuh / wazuh-chef
View on GitHub
Wazuh - Chef cookbooks
☆25Jul 26, 2023Updated 2 years ago
teoseller / osquery-attck
View on GitHub
Mapping the MITRE ATT&CK Matrix with Osquery
☆809May 11, 2023Updated 2 years ago
TheHive-Project / TheHive
View on GitHub
TheHive is a Collaborative Case Management Platform, now distributed as a commercial version
☆3,900Jul 25, 2025Updated 8 months ago