CESNET / Nemea
System for network traffic analysis and anomaly detection.
☆90Updated 3 months ago
Alternatives and similar repositories for Nemea:
Users that are interested in Nemea are comparing it to the libraries listed below
- a network packet capture compiler☆197Updated 2 years ago
- Passive Real-time Asset Detection System☆233Updated 8 months ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 6 years ago
- Suricata Extreme Performance Tuning guide☆207Updated 6 years ago
- Extract files from network traffic with Zeek.☆100Updated 4 years ago
- Suricata Extreme Performance Tuning guide - Mark II☆115Updated 6 years ago
- Zeek IDS Dockerfile☆100Updated 2 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆170Updated last year
- Evading Snort Intrusion Detection System.☆76Updated 3 years ago
- Web service for scanning pcaps with snort☆108Updated 6 years ago
- A framework for the real-time network traffic analysis based on world-leading technologies for distributed stream processing, network tra…☆101Updated 3 years ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆281Updated last year
- Detection modules of the Nemea system.☆21Updated last year
- DGA Domains detection☆63Updated 6 years ago
- calculate flow information from PCAP and extract tcp streams☆69Updated 7 months ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- ☆169Updated 3 years ago
- The tool for updating your Suricata rules.☆265Updated 2 months ago
- Rule sets for Sagan☆102Updated 4 years ago
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".☆175Updated 4 months ago
- Visualize network topologies and collect graph statistics based on pcap files☆346Updated 2 years ago
- A set of ICS IDS rules for use with Suricata.☆49Updated last year
- Network traffic classification library that requires minimal application payload☆212Updated 6 months ago
- High performance Deep Packet Inspection (DPI) framework to identify L7 protocols and extract and process data and metadata from network t…☆119Updated 4 years ago
- LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.☆297Updated 2 months ago
- Ready to run scripts for network analysis☆88Updated this week
- Detecting DGA bots in a single network using DNS traffic☆26Updated 7 years ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆228Updated 4 years ago
- aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…☆22Updated 6 years ago
- Templates for Kibana/Logstash to use with Suricata IDPS☆80Updated 8 years ago