Alternatives and similar repositories for Nemea-Detectors

Users that are interested in Nemea-Detectors are comparing it to the libraries listed below

• CESNET / Nemea
  System for network traffic analysis and anomaly detection.
  ☆91Updated 7 months ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆104Updated 4 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆66Updated 7 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆101Updated 5 years ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆199Updated 3 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆109Updated 12 years ago
• rkovar / dns_detection
  Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration
  ☆38Updated 9 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• jayjacobs / dga
  Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).
  ☆41Updated 8 years ago
• jasklabs / blackhat2017
  Data sets and examples for Jask Labs Blackhat 2017 Handout: Top 10 Machine Learning Cyber Security Use Cases
  ☆30Updated 7 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆238Updated last year
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆209Updated 7 years ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆94Updated 3 years ago
• dnsdb / dnsdb-query
  DNSDB query scripts
  ☆75Updated 5 years ago
• EmergingThreats / et-luajit-scripts
  ☆75Updated 3 years ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆34Updated last year
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆81Updated 2 months ago
• hanzhang0116 / BotDigger
  Detecting DGA bots in a single network using DNS traffic
  ☆26Updated 7 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆117Updated 7 years ago
• zeek / bro-scripts
  Misc. Bro scripts
  ☆64Updated 7 years ago
• zeek / zeekctl
  Tool for managing Zeek deployments.
  ☆56Updated last month
• zeek / packages
  The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.
  ☆137Updated last week
• passivetotal / python_api
  Python abstract API for PassiveTotal services in the form of libraries and command line utilities.
  ☆85Updated 2 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• zeek / bro-plugins
  (OBSOLETE) Plugins for Bro
  ☆53Updated 7 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• jbaggs / anomalous-dns
  A set of zeek scripts providing a module for tracking and correlating abnormal DNS behavior.
  ☆34Updated 4 months ago
• nccgroup / IP-reputation-snort-rule-generator
  A tool to generate Snort rules based on public IP reputation data
  ☆56Updated 11 years ago