wazuh/wazuh-ruleset

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/wazuh/wazuh-ruleset)

wazuh / wazuh-ruleset

Wazuh - Ruleset

☆509

Alternatives and similar repositories for wazuh-ruleset

Users that are interested in wazuh-ruleset are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

wazuh / wazuh-documentation
View on GitHub
Wazuh - Project documentation
☆255Updated this week
wazuh / wazuh-api
View on GitHub
Wazuh - RESTful API
☆80Sep 17, 2024Updated last year
wazuh / wazuh-dashboard-plugins
View on GitHub
Plugins for Wazuh Dashboard
☆501Updated this week
wazuh / wazuh-puppet
View on GitHub
Wazuh - Puppet module
☆53Mar 20, 2026Updated last week
wazuh / wazuh-ansible
View on GitHub
Wazuh - Ansible playbook
☆401Mar 20, 2026Updated last week
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
wazuh / wazuh-splunk
View on GitHub
Wazuh - Splunk App
☆56Sep 17, 2024Updated last year
wazuh / wazuh
View on GitHub
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
☆15,039Updated this week
wazuh / wazuh-packages
View on GitHub
Wazuh - Tools for packages creation
☆113Nov 25, 2024Updated last year
wazuh / wazuh-docker
View on GitHub
Wazuh - Docker containers
☆1,059Mar 20, 2026Updated last week
wazuh / wazuh-kubernetes
View on GitHub
Wazuh - Wazuh Kubernetes
☆367Mar 20, 2026Updated last week
socfortress / Wazuh-Rules
View on GitHub
Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
☆1,264Mar 11, 2026Updated 2 weeks ago
StamusNetworks / scirius
View on GitHub
Scirius is a web application for Suricata ruleset management and threat hunting.
☆675Dec 23, 2025Updated 3 months ago
wazuh / wazuh-security-dashboards-plugin
View on GitHub
Fork of OpenSearch Dashboards Security Plugin.
☆12Updated this week
BinaryDefense / auto-ossec
View on GitHub
☆142May 24, 2024Updated last year
NordVPN Special Discount Offer • Ad
Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
juaromu / wazuh-nmap
View on GitHub
☆22Mar 1, 2022Updated 4 years ago
0xbad53c / wazuh-detection-rules
View on GitHub
Our collection of Wazuh detection rules for our Offense Lab
☆18Feb 13, 2022Updated 4 years ago
ossec / ossec-hids
View on GitHub
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…
☆5,029Mar 22, 2026Updated last week
magenx / WAZUH-OSSEC
View on GitHub
WAZUH - The Open Source Security Platform Installation
☆89Oct 8, 2020Updated 5 years ago
wazuh / wazuh-qa
View on GitHub
Wazuh - Quality Assurance
☆69Oct 31, 2025Updated 4 months ago
branchnetconsulting / wazuh-tools
View on GitHub
Useful scripts for those administering Wazuh
☆93Jan 6, 2026Updated 2 months ago
SanWieb / sigWah
View on GitHub
A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
☆39Jun 8, 2020Updated 5 years ago
ossec / ossec-rules
View on GitHub
A repository for OSSEC rules and decoders
☆55Aug 9, 2023Updated 2 years ago
sametsazak / sysmon
View on GitHub
Sysmon and wazuh integration with Sigma sysmon rules [updated]
☆72Jul 21, 2021Updated 4 years ago
Open source password manager - Proton Pass • Ad
Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
socfortress / SOCFortress-Threat-Intel
View on GitHub
Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
☆32Sep 26, 2024Updated last year
dcid / ossec-hids
View on GitHub
OSSEC HIDS - Sucuri Fork
☆11Feb 12, 2021Updated 5 years ago
palantir / osquery-configuration
View on GitHub
A repository for using osquery for incident detection and response
☆884Sep 8, 2025Updated 6 months ago
StamusNetworks / Clear-NDR-ISO
View on GitHub
A Suricata based NDR distribution
☆1,590Sep 13, 2025Updated 6 months ago
SigmaHQ / sigma
View on GitHub
Main Sigma Rule Repository
☆10,224Mar 19, 2026Updated last week
juaromu / wazuh
View on GitHub
☆20Oct 17, 2021Updated 4 years ago
dj-wasabi / ansible-ossec-agent
View on GitHub
Installing and maintaining the ossec-agent for RedHat/Debian/Ubuntu.
☆42Jan 31, 2021Updated 5 years ago
Security-Onion-Solutions / security-onion
View on GitHub
Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
☆3,108Apr 16, 2021Updated 4 years ago
wazuh / wazuh-cloudformation
View on GitHub
Wazuh - Amazon AWS Cloudformation
☆43Jul 26, 2023Updated 2 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
Neo23x0 / signature-base
View on GitHub
YARA signature and IOC database for my scanners and tools
☆2,898Mar 21, 2026Updated last week
olafhartong / sysmon-modular
View on GitHub
A repository of sysmon configuration modules
☆2,996Aug 21, 2024Updated last year
Hestat / ossec-sysmon
View on GitHub
A Ruleset to enhance detection capabilities of Ossec using Sysmon
☆96Apr 13, 2022Updated 3 years ago
Neo23x0 / Loki
View on GitHub
Loki - Simple IOC and YARA Scanner
☆3,735Jan 12, 2026Updated 2 months ago
wazuh / wazuh-chef
View on GitHub
Wazuh - Chef cookbooks
☆24Jul 26, 2023Updated 2 years ago
teoseller / osquery-attck
View on GitHub
Mapping the MITRE ATT&CK Matrix with Osquery
☆808May 11, 2023Updated 2 years ago
TheHive-Project / TheHive
View on GitHub
TheHive is a Collaborative Case Management Platform, now distributed as a commercial version
☆3,896Jul 25, 2025Updated 8 months ago