Mapping NSM rules to MITRE ATT&CK
☆73Aug 29, 2020Updated 5 years ago
Alternatives and similar repositories for nsm-attack
Users that are interested in nsm-attack are comparing it to the libraries listed below
Sorting:
- A website and framework for testing NIDS detection☆57Aug 29, 2021Updated 4 years ago
- ☆14Jan 14, 2026Updated last month
- Suricata rules for network anomaly detection☆184Feb 7, 2026Updated 3 weeks ago
- Community-based CybergON-powered Suricata rules☆12Jul 5, 2022Updated 3 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Sep 17, 2019Updated 6 years ago
- Automation of VPC Traffic Mirror Sessions in AWS☆35Nov 15, 2025Updated 3 months ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆57Nov 20, 2025Updated 3 months ago
- ☆12Jan 28, 2020Updated 6 years ago
- ☆12Apr 23, 2020Updated 5 years ago
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆12Apr 18, 2020Updated 5 years ago
- A dsniff project using bro☆11Jan 25, 2016Updated 10 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆39Aug 18, 2022Updated 3 years ago
- Full Packet Capture for the Masses☆14Sep 13, 2018Updated 7 years ago
- provides a Suricata Eve output for Kafka with Suricate Eve plugin☆15Nov 25, 2021Updated 4 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Apr 21, 2020Updated 5 years ago
- Suricata rules for the new critical vulnerabilities☆85Jan 26, 2021Updated 5 years ago
- add dpdk interface and packet processing to suricata in worker mode☆64Aug 7, 2020Updated 5 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆37Nov 9, 2022Updated 3 years ago
- Suricata RPMs for CentOS/RHEL and Fedora☆19Jan 13, 2026Updated last month
- ☆168Jan 20, 2021Updated 5 years ago
- An Installation Script for Bro IDS on Debian Based Systems☆20Jun 25, 2020Updated 5 years ago
- Automatic detection engineering technical state compliance☆55Jul 7, 2024Updated last year
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆86Jun 23, 2025Updated 8 months ago
- ☆21Oct 16, 2021Updated 4 years ago
- Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.☆23Feb 9, 2021Updated 5 years ago
- Plugin providing native AF_Packet support for Zeek.☆33Oct 22, 2025Updated 4 months ago
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆22Jan 30, 2018Updated 8 years ago
- It is a platform to use multiprocess to combine dpdk and libnids together to support analyse packets in 10G port.☆39Nov 19, 2014Updated 11 years ago
- Collection of Suricata rule sets that I use modified to my environments.☆39Sep 13, 2020Updated 5 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆91Dec 8, 2022Updated 3 years ago
- Signature engine for all your logs☆172Nov 13, 2023Updated 2 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Aug 30, 2022Updated 3 years ago
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆24Mar 5, 2019Updated 6 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆172May 23, 2023Updated 2 years ago
- ☆10Jun 2, 2020Updated 5 years ago
- Range Traffic Generator - Used to simulate browsing traffic on a range.☆11May 24, 2017Updated 8 years ago
- cidrgen is based on cidr's subnet IP list generator☆15Aug 21, 2020Updated 5 years ago
- Passive Bitcoin Project☆10Aug 10, 2015Updated 10 years ago
- Next major release of sniffMyPackets - Now with added packet loving☆12Mar 19, 2015Updated 10 years ago