{"id":50674564,"url":"https://github.com/Esther7171/Wazuh-SOC-Lab","last_synced_at":"2026-06-25T12:00:34.893Z","repository":{"id":265873169,"uuid":"896128276","full_name":"Esther7171/Wazuh-SOC-Lab","owner":"Esther7171","description":"Wazuh detection engineering, SIEM integrations, and SOC automation lab.","archived":false,"fork":false,"pushed_at":"2026-06-03T07:38:56.000Z","size":14242,"stargazers_count":17,"open_issues_count":0,"forks_count":7,"subscribers_count":2,"default_branch":"main","last_synced_at":"2026-06-03T08:17:20.610Z","etag":null,"topics":["blue-team","cis-benchmark","compliance","cyber-security","endpoint-security","security-compliance","security-monitoring","server-hardening","siem","soc","soc-automation","sysmon","threat-detection","threat-intelligence","virustotal","wazuh","yara"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Esther7171.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2024-11-29T15:50:41.000Z","updated_at":"2026-06-03T07:38:59.000Z","dependencies_parsed_at":"2025-11-24T00:00:08.465Z","dependency_job_id":null,"html_url":"https://github.com/Esther7171/Wazuh-SOC-Lab","commit_stats":null,"previous_names":["esther7171/wazuh","esther7171/wazuh-complete-guide","esther7171/wazuh-soc-lab"],"tags_count":3,"template":false,"template_full_name":null,"purl":"pkg:github/Esther7171/Wazuh-SOC-Lab","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Esther7171%2FWazuh-SOC-Lab","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Esther7171%2FWazuh-SOC-Lab/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Esther7171%2FWazuh-SOC-Lab/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Esther7171%2FWazuh-SOC-Lab/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Esther7171","download_url":"https://codeload.github.com/Esther7171/Wazuh-SOC-Lab/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Esther7171%2FWazuh-SOC-Lab/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34773843,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-25T02:00:05.521Z","response_time":101,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["blue-team","cis-benchmark","compliance","cyber-security","endpoint-security","security-compliance","security-monitoring","server-hardening","siem","soc","soc-automation","sysmon","threat-detection","threat-intelligence","virustotal","wazuh","yara"],"created_at":"2026-06-08T15:00:24.661Z","updated_at":"2026-06-25T12:00:34.881Z","avatar_url":"https://github.com/Esther7171.png","language":null,"funding_links":[],"categories":["Guides \u0026 Tutorials"],"sub_categories":["General"],"readme":"\u003cdiv align=\"center\"\u003e\n  \u003cimg width=\"1785\" height=\"714\" alt=\"banner\" src=\"https://github.com/user-attachments/assets/cb769268-59a3-49c6-8379-7b418b62eaf5\" /\u003e\n\u003c/div\u003e\n\n\u003ch1 align=\"center\"\u003eWazuh SOC Lab\u003c/h1\u003e\n\n\u003cp align=\"center\"\u003e\nDetection Engineering • SIEM • SOC Automation\n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\n\n![Wazuh](https://img.shields.io/badge/Wazuh-SIEM-0052CC?style=for-the-badge)\n![SOC](https://img.shields.io/badge/SOC-Monitoring-5B2C87?style=for-the-badge)\n![Blue Team](https://img.shields.io/badge/Blue-Team-1F8B4C?style=for-the-badge)\n![Detection](https://img.shields.io/badge/Detection-Engineering-B22222?style=for-the-badge)\n![MITRE](https://img.shields.io/badge/MITRE-ATT%26CK-darkred?style=for-the-badge)\n![Compliance](https://img.shields.io/badge/CIS-Compliance-228B22?style=for-the-badge)\n\n\u003c/p\u003e\n\n---\n\nPractical Wazuh engineering focused on threat detection, SIEM integrations, and SOC automation.\n\n---\n\n## Wazuh Installation Guides\n\n- [How to Install Wazuh Single Node in One Click]()\n- [How to Install Wazuh on a Public IP Manually]()\n- [How to Install Wazuh Using Docker]()\n- [How to Configure Wazuh After Installation]()\n- [How to Change the Default Wazuh Dashboard Password]()\n\n---\n\n## Wazuh Agent Management\n\n- [How to Enroll Windows Agents]()\n- [How to Enroll Linux Agents]()\n- [How to Enroll macOS Agents]()\n- [How to Upgrade Wazuh Agents Remotely]()\n- [How to Add Agent Labels]()\n- [How to Configure Centralized Agent Settings]()\n\n---\n\n## Wazuh Dashboard Management\n\n- [How to Rebrand the Wazuh Dashboard]()\n- [How to Configure Custom Domain SSL]()\n- [How to Change the Wazuh Dashboard Password]()\n- [How to Manage Wazuh RBAC Users]()\n- [How to Create Wazuh Visualizers]()\n\n---\n\n## Integrations \u0026 Threat Detection\n\n### Alert Integrations\n\n- [How to Configure Gmail Alerts]()\n- [How to Integrate Slack with Wazuh]()\n- [How to Send Wazuh Alerts to Microsoft Teams]()\n- [How to Configure Telegram Bot Alerts]()\n\n### Threat Detection\n\n- [How to Integrate VirusTotal with Wazuh]()\n- [How to Detect PowerShell Attacks Using Wazuh]()\n- [How to Configure YARA with File Integrity Monitoring]()\n- [How to Integrate Criminal IP Threat Intelligence]()\n\n### Antivirus and Monitoring\n\n- [How to Integrate Windows Defender]()\n- [How to Configure Sysmon for Log Collection]()\n- [How to Monitor System Resources with Wazuh]()\n\n---\n\n## Wazuh Server Management\n\n- [How to Restart Wazuh Services Automatically]()\n- [How to Monitor Wazuh Server Health]()\n- [How to Troubleshoot Wazuh Issues]()\n\n---\n\n## Wazuh Hardening\n\n- [How to Harden the Wazuh Server]()\n- [How to Configure SSH Security Banner]()\n- [How to Secure the Wazuh Dashboard]()\n\n---\n\n## Wazuh Architecture\n\n- [Wazuh Components Overview]()\n- [Wazuh Data Flow Architecture]()\n- [Wazuh Cluster Architecture]()\n\n---\n\n## Compliance\n\n- [Wazuh Compliance Overview]()\n- [How to Achieve CIS Benchmark Monitoring]()\n\n---\n\n## Features\n\n- Threat Detection\n- SIEM Monitoring\n- Malware Detection\n- SOC Automation\n- Dashboard Rebranding\n- Threat Intelligence\n- File Integrity Monitoring\n- Security Alerting\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FEsther7171%2FWazuh-SOC-Lab","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FEsther7171%2FWazuh-SOC-Lab","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FEsther7171%2FWazuh-SOC-Lab/lists"}