Wazuh Logo

Wazuh

2
Free
Visit Website

Wazuh is an open-source security platform that provides unified XDR and SIEM protection for endpoints and cloud workloads. It offers: 1. Endpoint Security: Configuration assessment, malware detection, and file integrity monitoring. 2. Threat Hunting: Log data analysis and vulnerability detection. 3. Security Operations: Incident response and regulatory compliance. 4. Cloud Security: Container security, posture management, and workload protection. The platform integrates historically separate functions into a single agent and platform architecture, covering public clouds, private clouds, and on-premise data centers. Wazuh includes real-time correlation and context for analysts, with active response capabilities for on-device remediation. As a SIEM solution, Wazuh provides monitoring, detection, and alerting of security events and incidents. It is designed to be flexible, scalable, and free from vendor lock-in, with no license costs. The platform is supported by a large community and is widely used in enterprise environments.

FEATURES

ALTERNATIVES

A comprehensive auditd configuration for Linux systems following best practices.

Open source application to instantly remediate common security issues through the use of AWS Config.

A collection of Cyber Incident Response Playbook Battle Cards (PBC) for combating cyber threats and attacks, following a prescriptive approach inspired by CERT Societe Generale's IRM.

A project that uses Athena and EventBridge to investigate API activity and notify of actions for incident response and misconfiguration detection.

Fast Intercept is a security automation platform that empowers users to maximize their existing security products and automate routine tasks.

Automatically configure your app to follow OWASP security patterns and principles with Nuxt Security module.

Migrated Splunk SOAR Connectors to new GitHub organization for better organization and management.

Automate security incident handling and facilitate real-time activities of incident handlers.