#Soar
Showing 28 of 28 repositories tagged #soar, ranked by stars
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
A curated knowledge base to build, run and mature a SOC (including CSIRT).
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
Open-source AI-powered Security Operations Center — alert fusion, purple-team drills, agent-assisted triage, MITRE ATT&CK investigation. MIT-licensed, self-hostable.
基于开源组件(Inception & SQLAdvisor & SOAR)的SQL审核&SQL优化的Web平台
Agentic SOC Platform: A powerful, flexible, open-source, and agent-centric automated security operations platform (AI SOC)
Extract and aggregate threat intelligence.
Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.
🤖 Admyral enables continuous control monitoring for any custom control
Notice: Postee is no longer under active development or maintenance.
🔥🔥🔥 AI security automation platform. Build visual workflows, deploy autonomous agents, and automate threat detection and response. 80+ integrations with SIEM, EDR, ticketing, and cloud tools. Self-hosted SOAR alternative.
Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch jimi has developed into a fully fledged IT automation platform which effortlessly integrates with your existing tools unlocking the potential for autonomous IT and Security operations.
SOAR Automation with Shuffle, Wazuh & TheHive | This project integrates Shuffle SOAR, Wazuh SIEM, and TheHive to automate security incident response. It enriches alerts using VirusTotal & AbuseIPDB, creates incidents in TheHive, and sends real-time Discord notifications.
A curated repository of incident response playbooks
django-base-templates 主要为 django 开发DEMO, 支持 非前后端分离 和 前后端分离模式 。
SOARCA - The Open Source CACAO-based Security Orchestrator!
Complete SOC Analyst Training Roadmap 2026: 14 hands-on projects (SIEM, SOAR, TIP, ML) for automation-first defenders
I wish the world continues to be lively, I wish you and me are still you and me.
安全编排与自动化响应平台
A Lambda-powered Security Orchestration framework for AWS GuardDuty
A tool that allows you to document and assess any security automation in your SOC
🛡️ Free AI that blocks hackers while you sleep. Runs on cheap hardware. When someone in Tokyo gets attacked, you're protected in 30 seconds. No fees. No experts needed. Just protection. One node's detection → everyone's protection.
Lightweight, self hosted platform for building webhooks, scheduled tasks and pages. Implement your logic with Bash or Lua
📦 The Largest Collection of Pre-Compiled Linux Static Binaries for Soar: The Modern, Bloat-Free Distro-Independent Package Manager
This repository will describe the details surrounding the SIEM (wazuh) mini project, which will cover all aspects of topology design, deployment, rules, integration, and fine tune.
AI-powered SOC for OT/ICS networks — 6 autonomous agents, MITRE ATT&CK mapping, Suricata/Zeek ingestion, human-in-the-loop response, 330+ tests. Open-source alternative to Claroty/Dragos for SMBs.
IDPS-ESCAPE: Intrusion Detection and Prevention System - Enhanced Security through a Cooperative Anomaly Prediction Engine. SOAR via a Risk-aware Anomaly Detection-based Automated Response (RADAR) subsystem and a deep learning-based AD subsystem (SONAR), integrated with Wazuh, Flowintel, Suricata
Mantissa Log is an open-source and cost-transparent engine that uses a natural language interface to "Ask Questions. Detect Threats. Trace Performance. Automate Responses."