Highlights
- Pro
Wazuh
Collection of tools, rules and other things for Wazuh
Command line tool to review, merge and modify OSSEC/Wazuh rules in bulk
Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
Send email summaries about bad system configuration detected by Wazuh
Useful scripts for those administering Wazuh
A Ruleset to enhance detection capabilities of Ossec using Sysmon
OpenSearch Data Prepper is a component of the OpenSearch project that accepts, filters, transforms, enriches, and routes data at scale.
A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
Grab your DNS logs, detect anomalies, and finally understand what's happening on your network. The missing piece between DNS servers and your data stack.
This Kibana plugin allows calculated metrics on any standard kibana visualizations.
Prometheus metrics for Kibana
Kibana Milestones Visualization
Basic simple integration around falco and wazuh into k8s cluster with daemonset deployment.
Wazuh extension looking up alert data against indicators in OpenCTI threat intel
OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
Modular CJIS Compliance Ruleset for Wazuh A maintainable, version-controlled collection of custom Wazuh rules mapped to CJIS Security Policy controls. Designed for easy auditing, deployment, and in…