1554 Open source projects that are alternatives of or similar to Wazuh

Wazuh - Tools for packages creation

Wazuh - Ansible playbook

Wazuh - Puppet module

Wazuh - Amazon AWS Cloudformation

Wazuh - Ruleset

Wazuh - Chef cookbooks

Wazuh - Docker containers

Wazuh - Kibana plugin

Wazuh - Project documentation

OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

Daemon to ban hosts that cause multiple authentication errors

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

SIAC is an enterprise SIEM built on open-source technology.

Generic Signature Format for SIEM Systems

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

Very basic CLI SIEM (Security Information and Event Management system).

WAZUH - The Open Source Security Platform Installation

BSM based intrusion detection system

osquery extensions by Trail of Bits

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

Hastic data management server for analyzing patterns and anomalies from Grafana

psad: Intrusion Detection and Log Analysis with iptables

SQL powered operating system instrumentation, monitoring, and analytics.

INFRASTRUCTURE、OPERATION SYSTEM and APPLICATION monitoring tools for Operations.

Stack Exchange's Monitoring System

A Suricata based IDS/IPS distro

A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)

A curated list of Site Reliability and Production Engineering resources.

The Heroic Time Series Database

An extremely crude, lightweight Web Frontend for Suricata/Bro to be used with BriarIDS

Simple Implementation of Network Intrusion Detection System. KddCup'99 Data set is used for this project. kdd_cup_10_percent is used for training test. correct set is used for test. PCA is used for dimension reduction. SVM and KNN supervised algorithms are the classification algorithms of project. Accuracy : %83.5 For SVM , %80 For KNN

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

Important production-grade Kubernetes Ops Services

Receives HTTP webhook notifications from AlertManager and inserts them into an Elasticsearch index for searching and analysis

INTERCEPT / Policy as Code Static Analysis Auditing / SAST

A community-oriented fork of osquery with support for cmake, public CI testing, and regular releases

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

A utility to generate malicious network traffic and evaluate controls

Monitoring and Management Web Application for ElasticSearch instances and clusters.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Exceptionless server and jobs

HOMER 7 Docker Images

Network monitoring system written in Python and Django, designed to be extensible, programmable, scalable and easy to use by end users: once the system is configured, monitoring checks, alerts and metric collection happens automatically.

Azure PCI PaaS Reference Architecture

This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).

Graylog Metrics Reporter Plugins

Real-time HTTP Intrusion Detection

ElasticSearch cluster metrics -> Graphite

HOMER 7.x Front-End and API Server

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Bro IDS Dockerfile

A lightweight tool to score network traffic and flag anomalies

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

An UNOFFICIAL Git Repository of Snort Rules(IDS rules) Releases.

Open Source SIEM (Security Information and Event Management system).

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform