Here I've compiled a list of Open Source SOC tools! I use many of which in my labs and production. Major love for the Open spource and OSINT Community ❤
- Snort
- Suricata
- OSSEC
- ZEEK
- OpenVas
- Vega
- OWASP-ZAP
- Nikto
- Tenable Community
- Nagios
- Cacti
- Icinga2
- Zabbix
- Prometheus
- NXLog
- Graylog
- Elasticsearch and Logstash
- Fluentd
- Flume
- Octopussy
- Logalyze
- Logstalgia
- Wazuh
- Osquery
- Security Onion
- Samhain
- OpenEDR
- Wazuh
- Comodo
- Pfsense
- Iptables
- Ipfire
- OPNSense
- Smoothwall
- NG Firewall
- UFW
- Maltego
- MISSP
- Virus Total
- X-Force
- Talos
- VirusShare
- Anyrun
- Automated Indicator Sharing
- Infragard
- Mitre Att&ck
- Infection Monkey
- APT Simulator
- Caldera
- Red Canary
- OSSIM
- Splunk Trial
- Elasticsearch
- Sagan
- Mozdef
- Apache Metron
- SpiceWorks
- osTicket
- SuiteCRM
- Liberum
- Cynet 360
- GRR Rapid Response
- AlienVault
- Cyphon
- Volatility
- Autopsy
- XSOAR
- CyberCPR
- FTK Imager
- Doorman
- Mozdef
- CimSweep
- TheHive
- SIFT
- Yara
- GRR
- Bro
- Cuckoo Sandbox
- Anyrun
- VirusTotal
- ModSecurity
- Cloudflare
- WebKnight
- Cloudflare
- Quad9