CESNET / NemeaLinks
System for network traffic analysis and anomaly detection.
☆91Updated 3 months ago
Alternatives and similar repositories for Nemea
Users that are interested in Nemea are comparing it to the libraries listed below
Sorting:
- Passive Real-time Asset Detection System☆248Updated last year
- Suricata Extreme Performance Tuning guide☆213Updated 7 years ago
- Visualize network topologies and collect graph statistics based on pcap files☆352Updated 2 years ago
- a network packet capture compiler☆202Updated 3 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- Web service for scanning pcaps with snort☆109Updated 7 years ago
- Suricata Extreme Performance Tuning guide - Mark II☆119Updated 7 years ago
- Plugin providing AF_XDP support for Bro.☆14Updated 4 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆282Updated 3 months ago
- aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…☆22Updated 6 years ago
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".☆185Updated last year
- A framework for the real-time network traffic analysis based on world-leading technologies for distributed stream processing, network tra…☆102Updated 4 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- ☆174Updated 4 years ago
- calculate flow information from PCAP and extract tcp streams☆70Updated last year
- Extract files from network traffic with Zeek.☆102Updated 5 years ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆229Updated 4 years ago
- High performance Deep Packet Inspection (DPI) framework to identify L7 protocols and extract and process data and metadata from network t…☆125Updated 4 years ago
- Documentation, sample inputs, and sample programs that use the dpkt library☆87Updated 9 years ago
- A fast parser for DNS pcap data.☆71Updated 8 years ago
- Rule sets for Sagan☆105Updated 4 years ago
- Tranalyzer generates extended netflow-like flow statistics from large pcap files or extensive ethernet interface measurements. It is inte…☆18Updated 6 years ago
- DDOS Detection and Mitigation Appliance☆68Updated 8 years ago
- DGA Domains detection☆69Updated 7 years ago
- BGP Hijack Detection☆115Updated 7 years ago
- An IDS (Couldn't find Snort on github when I wanted to fork)☆120Updated 13 years ago
- Mercury: network metadata capture and analysis☆477Updated 3 weeks ago
- A set of ICS IDS rules for use with Suricata.☆50Updated 2 years ago
- The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…☆221Updated 8 years ago