Alternatives and similar repositories for zeek-tls-log-alternative

Users that are interested in zeek-tls-log-alternative are comparing it to the libraries listed below

• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆79Updated 7 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆81Updated last month
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆45Updated 6 years ago
• corelight / ripple20
  A Zeek package for the passive detection of "Ripple20" vulnerabilities in the Treck TCP/IP stack.
  ☆33Updated 3 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆72Updated 5 years ago
• vlegoy / rcATT
  A python app to predict Att&ck tactics and techniques from cyber threat reports
  ☆126Updated last year
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆107Updated 4 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆36Updated 3 years ago
• zeek-flowmeter / zeek-flowmeter
  A Zeek script to generate features based on timing, volume and metadata for traffic classification.
  ☆59Updated 4 years ago
• COSSAS / dgad
  DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic
  ☆44Updated last year
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆32Updated last week
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 5 years ago
• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated 6 months ago
• FrankHassanabad / suricata-sample-data
  Repository of creating different example suricata data sets
  ☆36Updated 6 years ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆158Updated 5 months ago
• precurse / zeek-httpattacks
  This module detects HTTP requests that are non RFC compliant and used for smuggling
  ☆12Updated 2 years ago
• Center-Sun / suricata-kafka-output
  provides a Suricata Eve output for Kafka with Suricate Eve plugin
  ☆15Updated 3 years ago
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆62Updated last year
• ozuriexv / SublimeSuricata
  ☆35Updated last year
• cyware-labs / Threat-Response-Docker
  ☆43Updated 2 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated last year
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆20Updated 5 months ago
• elcabezzonn / Pcaps
  ☆52Updated last year
• lion-gu / ioc-explorer
  Explore Indicators of Compromise Automatically
  ☆96Updated 5 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 6 years ago
• jasklabs / blackhat2017
  Data sets and examples for Jask Labs Blackhat 2017 Handout: Top 10 Machine Learning Cyber Security Use Cases
  ☆30Updated 8 years ago
• yukh1402 / cti-stix-diamond-activity-attack-graph
  STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling
  ☆33Updated 9 months ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆116Updated this week
• PSJoshi / Notes
  My notes on various topics
  ☆65Updated last year