AlienVault-OTX / OTX-SuricataLinks
The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX account.
☆112Updated last year
Alternatives and similar repositories for OTX-Suricata
Users that are interested in OTX-Suricata are comparing it to the libraries listed below
Sorting:
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 4 years ago
- Suricata rules for network anomaly detection☆177Updated 2 weeks ago
- Snorpy is a python script the gives a Gui interface to help those new to snort create rules.☆64Updated last year
- A website and framework for testing NIDS detection☆57Updated 4 years ago
- How to Zeek Sysmon Logs!☆103Updated 3 years ago
- A live dashboard for a real-time overview of threat intelligence from MISP instances☆205Updated 2 years ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆143Updated this week
- Cyber Threat Intelligence Feeds☆96Updated 9 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Updated 2 years ago
- Mapping NSM rules to MITRE ATT&CK☆73Updated 5 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆122Updated 4 years ago
- Malware Sinkhole List in various formats☆102Updated 3 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆108Updated 4 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- Zeek IDS Dockerfile☆101Updated 3 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆177Updated 4 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆107Updated last year
- Detect HTTP stalling attacks like slowloris with Bro☆19Updated 7 years ago
- Automated handling of data feeds for security teams☆145Updated 2 months ago
- Cyber Threat Intelligence Feeds☆69Updated last year
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆156Updated 6 months ago
- zeek-scripts☆45Updated 6 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆159Updated 8 months ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆105Updated last year
- Collecting & Hunting for IOCs with gusto and style☆241Updated 4 years ago
- Rule sets for Sagan☆106Updated 4 years ago
- ☆35Updated 2 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆267Updated 2 years ago
- Log Entry to Sigma Rule Converter☆108Updated 3 years ago
- Download a list of suspected malicious IPs and Domains. Create a QRadar Reference Set. Search Your Environment For Malicious IPs☆69Updated 4 years ago