CESNET / NemeaLinks
System for network traffic analysis and anomaly detection.
☆91Updated last month
Alternatives and similar repositories for Nemea
Users that are interested in Nemea are comparing it to the libraries listed below
Sorting:
- Passive Real-time Asset Detection System☆246Updated last year
- A framework for the real-time network traffic analysis based on world-leading technologies for distributed stream processing, network tra…☆102Updated 4 years ago
- Visualize network topologies and collect graph statistics based on pcap files☆352Updated 2 years ago
- a network packet capture compiler☆201Updated 3 years ago
- aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…☆22Updated 6 years ago
- Suricata Extreme Performance Tuning guide☆211Updated 7 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…☆219Updated 8 years ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆282Updated last month
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- Plugin providing AF_XDP support for Bro.☆14Updated 4 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- Web service for scanning pcaps with snort☆109Updated 7 years ago
- Extract files from network traffic with Zeek.☆101Updated 5 years ago
- Apache Metron☆60Updated 4 years ago
- calculate flow information from PCAP and extract tcp streams☆70Updated last year
- DDOS Detection and Mitigation Appliance☆68Updated 8 years ago
- A completely automated anomaly detector Zeek network flows files (conn.log).☆82Updated 2 weeks ago
- Rule sets for Sagan☆105Updated 4 years ago
- Suricata Extreme Performance Tuning guide - Mark II☆118Updated 7 years ago
- Snort in Docker for Network Functions Virtualization (NFV)☆108Updated 6 years ago
- High performance Deep Packet Inspection (DPI) framework to identify L7 protocols and extract and process data and metadata from network t…☆122Updated 4 years ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆229Updated 4 years ago
- An IDS (Couldn't find Snort on github when I wanted to fork)☆120Updated 13 years ago
- Web PCAP storage and analytics☆184Updated 2 years ago
- ☆172Updated 4 years ago
- LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.☆304Updated last month
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".☆182Updated 10 months ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 11 months ago
- Sweet, sweet, secrepo.com html.☆132Updated 3 years ago