wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Wazuh - Docker containers

Plugins for Wazuh Dashboard

Wazuh - Ruleset

Wazuh - Ansible playbook

Wazuh - Project documentation

SIAC is an enterprise SIEM built on open-source technology.

Wazuh - Tools for packages creation

SOAR Automation with Shuffle, Wazuh & TheHive | This project integrates Shuffle SOAR, Wazuh SIEM, and TheHive to automate security incident response. It enriches alerts using VirusTotal & AbuseIPDB, creates incidents in TheHive, and sends real-time Discord notifications.

MCP Server for Wazuh SIEM

A Ruleset to enhance detection capabilities of Ossec using Sysmon

WAZUH - The Open Source Security Platform Installation

Wazuh - RESTful API

Sysmon and wazuh integration with Sigma sysmon rules [updated]

Monitoring a Kubernetes cluster involves deploying and utilizing the Wazuh agent within the Kubernetes environment.

AI-powered security operations with Wazuh SIEM + Claude Desktop. Natural language threat detection, automated incident response & compliance. Real-time monitoring, ML anomaly detection. Transform your SOC with conversational security analysis. Production-ready MCP server.

Wazuh - Splunk App

CVE-2025-24016: RCE in Wazuh server! Remote Code Execution

Wazuh - Puppet module

Decoders and Rules for Fortigate in Wazuh