Alternatives and similar repositories for NERD:

Users that are interested in NERD are comparing it to the libraries listed below

• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆91Updated 7 months ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆72Updated 10 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆52Updated 3 weeks ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• woanware / bgp-watcher
  Prototype system to monitor BGP routes and alert when anomalies are identified
  ☆15Updated 6 years ago
• ninoseki / abuse_whois
  Yet another way to find where to report an abuse
  ☆32Updated 3 months ago
• The-Shadowserver-Foundation / api_utils
  Sample programs to access the API
  ☆81Updated 2 weeks ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 2 years ago
• m3047 / shodohflo
  Pure Python netflow and DNS correlation, with reusable Frame Streams, DnsTap and Protobuf implementations
  ☆15Updated last month
• yvesago / imap-honey
  IMAP or SMTP honeypot written in Golang
  ☆25Updated 3 years ago
• melicertes / csp
  The Cyber Security Platform MeliCERTes is part of the European Strategy for Cyber Security. MeliCERTes is a network for establishing conf…
  ☆32Updated 3 years ago
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 2 years ago
• jctello / JCT-Wazuh
  Tools for Wazuh by Juan C. Tello
  ☆14Updated 3 years ago
• juaromu / wazuh-nmap
  ☆17Updated 3 years ago
• Homas / ioc2rpz
  ioc2rpz is a place where threat intelligence meets DNS.
  ☆109Updated 3 months ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆85Updated 6 years ago
• sdnewhop / sdwan-harvester
  Automatically enumerate and fingerprint SD-WAN nodes on the internet
  ☆50Updated 3 years ago
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆14Updated 2 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• stratosphereips / AIP
  The Attacker IP Prioritizer(AIP) dynamically generates resource-friendly IPv4 blocklists from Zeek network flows.
  ☆30Updated 5 months ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆70Updated 3 weeks ago
• JustinAzoff / ssh-auth-logger
  A low/zero interaction ssh authentication logging honeypot
  ☆21Updated 9 months ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆46Updated last month
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆48Updated last year
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• mitre / human
  Caldera plugin to deploy "humans" to emulate user behavior on systems
  ☆28Updated last year
• D4-project / analyzer-d4-passivedns
  A Passive DNS backend and collector
  ☆31Updated 2 years ago
• MISP / misp-guard
  misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…
  ☆14Updated 2 months ago