UTMStack alternatives for AI agents.

Plugins for Wazuh Dashboard

Wazuh - Docker containers

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

Fast and efficient osquery management

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Volatility 3.0 development

Digging Deeper....

The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.

Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.

This repo contains the results of an internal re-write of impacket I undertook at my current company. It contains some of the IoCs found within the library

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte

Collaborative Incident Response platform

Open-source AI-powered Security Operations Center — alert fusion, purple-team drills, agent-assisted triage, MITRE ATT&CK investigation. MIT-licensed, self-hostable.

Cortex: a Powerful Observable Analysis and Active Response Engine

UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It automates the collection of artifacts from a wide range of Unix-like systems, including AIX, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris.