AlkenePan / awesome-bro
Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
☆32Updated 4 years ago
Alternatives and similar repositories for awesome-bro:
Users that are interested in awesome-bro are comparing it to the libraries listed below
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆100Updated 3 years ago
- A set of zeek scripts providing a module for tracking and correlating abnormal DNS behavior.☆33Updated last month
- 威胁检测规则集☆15Updated 5 years ago
- ☆38Updated last year
- Application and service identification rules for Suricata☆29Updated 2 years ago
- ☆53Updated 6 years ago
- Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner☆43Updated 3 years ago
- Mapping NSM rules to MITRE ATT&CK☆69Updated 4 years ago
- ☆35Updated last year
- Suricata rules for the new critical vulnerabilities☆81Updated 4 years ago
- A repository for OSSEC rules and decoders☆54Updated last year
- Quickly generate suricata rules for IOCs☆28Updated 3 years ago
- Zeek IDS Dockerfile☆100Updated 2 years ago
- Explore Indicators of Compromise Automatically☆94Updated 5 years ago
- zeek-scripts☆43Updated 6 years ago
- A set of ICS IDS rules for use with Suricata.☆49Updated last year
- Yara powered NIDS with high speed packet capture powered by PF_RING☆68Updated 9 months ago
- Rule sets for Sagan☆102Updated 4 years ago
- Plugin for Zeek/Bro which provides http2 decoder/analyzer☆31Updated 8 months ago
- OpenFlow Honeypot☆23Updated 12 years ago
- Suricata rule and intel index☆31Updated 2 months ago
- Malware Sinkhole List in various formats☆102Updated 2 years ago
- collector/runner☆65Updated last week
- Golang based web service to scan files with yara rules☆27Updated 7 years ago
- ☆41Updated 2 years ago
- Bro integration with osquery☆15Updated last year
- suricata IDS的规则,测试在用的,部分自写的规则视情况放出。☆18Updated 5 years ago
- ☆54Updated 8 months ago
- ☆9Updated 8 years ago