Alternatives and similar repositories for NERD

Users that are interested in NERD are comparing it to the libraries listed below

• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆95Updated 2 months ago
• Homas / ioc2rpz
  ioc2rpz is a place where threat intelligence meets DNS.
  ☆112Updated 10 months ago
• yvesago / imap-honey
  IMAP or SMTP honeypot written in Golang
  ☆25Updated 3 years ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆57Updated last week
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• The-Shadowserver-Foundation / api_utils
  Sample programs to access the API
  ☆95Updated 7 months ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆75Updated 2 months ago
• melicertes / csp
  The Cyber Security Platform MeliCERTes is part of the European Strategy for Cyber Security. MeliCERTes is a network for establishing conf…
  ☆32Updated 3 years ago
• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆24Updated 6 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 5 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆49Updated 2 weeks ago
• jctello / JCT-Wazuh
  Tools for Wazuh by Juan C. Tello
  ☆15Updated 3 years ago
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆187Updated 7 months ago
• ivre / masscanned
  Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-host…
  ☆132Updated this week
• D4-project / passive-ssh
  A Passive SSH back-end and scanner.
  ☆104Updated 5 months ago
• sec51 / honeymail
  SMTP honeypot written in Golang
  ☆32Updated 9 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆189Updated last month
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 3 years ago
• m3047 / shodohflo
  Pure Python netflow and DNS correlation, with reusable Frame Streams, DnsTap and Protobuf implementations
  ☆16Updated 3 months ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆171Updated 2 years ago
• firefart / network_info
  Parse Network Info Databases (ARIN/APNIC/LACNIC/AfriNIC/RIPE)
  ☆107Updated this week
• team-cymru / network-security-templates
  ☆68Updated last year
• InternetHealthReport / internet-yellow-pages
  A knowledge graph for the Internet
  ☆68Updated this week
• zmap / zannotate
  Utility for annotating Internet datasets with contextual metadata (e.g., origin AS, MaxMind GeoIP2, reverse DNS, and WHOIS)
  ☆105Updated last week
• platformbuilds / SpamhausIPLists
  Hourly Checked and Updated Spamhaus IP Addresses lists
  ☆47Updated last year
• massimocandela / geofeed-finder
  Utility to find geofeed files linked from rpsl.
  ☆90Updated last week
• dmachard / python-blocklist-aggregator
  Domains blocklist aggregator - Create your own list from several sources.
  ☆14Updated last month
• gnxsecurity / gnx-threat-intelligence
  A commercial grade threat intelligence feed thats validated and updated every half hour.
  ☆19Updated 2 years ago
• hknutzen / Netspoc
  A network security policy compiler. Netspoc is targeted at environments with a large number of firewalls and admins. Firewall rules are d…
  ☆75Updated this week
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆141Updated 9 months ago