455 Open source projects that are alternatives of or similar to wazuh-packages

Wazuh - Ansible playbook

Wazuh - The Open Source Security Platform

Wazuh - Puppet module

Wazuh - Amazon AWS Cloudformation

Wazuh - Docker containers

Wazuh - Chef cookbooks

Wazuh - Kibana plugin

Wazuh - Ruleset

OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

Wazuh - Project documentation

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

SIAC is an enterprise SIEM built on open-source technology.

Daemon to ban hosts that cause multiple authentication errors

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Open Source SIEM (Security Information and Event Management system).

BSM based intrusion detection system

An UNOFFICIAL Git Repository of Snort Rules(IDS rules) Releases.

Simple Implementation of Network Intrusion Detection System. KddCup'99 Data set is used for this project. kdd_cup_10_percent is used for training test. correct set is used for test. PCA is used for dimension reduction. SVM and KNN supervised algorithms are the classification algorithms of project. Accuracy : %83.5 For SVM , %80 For KNN

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

WAZUH - The Open Source Security Platform Installation

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

INTERCEPT / Policy as Code Static Analysis Auditing / SAST

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Azure PCI PaaS Reference Architecture

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

Real-time HTTP Intrusion Detection

idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

An extremely crude, lightweight Web Frontend for Suricata/Bro to be used with BriarIDS

WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Very basic CLI SIEM (Security Information and Event Management system).

immudb - world’s fastest immutable database, built on a zero trust model

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

psad: Intrusion Detection and Log Analysis with iptables

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.

Mixeway Scanner is Spring Boot application which aggregate integration with number of OpenSource Vulnerability scanners - both SAST and DAST types

A kubernetes controller running on bare-metal firewalls, creating nftables rules, configures suricata, collects network metrics

Chainlink security and orchestration tools for Ubuntu server

Carve file metadata from NTFS index ($I30) attributes

Hashids, ported for Perl

An event stream processor anyone can use

Toolset for detecting reflected xss in websites

Guardian is a tool for extensible and universal data access with automated access workflows and security controls across data stores, analytical systems, and cloud products.

Static and dynamic Android application security analysis

UTM Firewall on OpenBSD

#ThreatHunting #DFIR #Malware #Detection Mind Maps

Enhance the security of the EC2 metadata service. (Obsolete thanks to Instance Metadata Service Version 2, see note in README)

Who and what to follow in the world of cyber security

GradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.

Prototype to collect data and analyse it from a compromised macOS device.

Syntax highlighting for generic log files in VIM

A script using Docker to quickly bring up some honeypots exposing lots of services. For research, reconnaissance, and fun. (DISCLAIMER may not be fun, not to be taken internally, aim away from face)

The knife of the Admin & Security auditor

A prototype that demonstrates a method for scoring how well Windows systems have implemented some of the top 10 Information Assurance mitigation strategies. #nsacyber

Exporting MISP event attributes to yara rules usable with Thor apt scanner

☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬