Alternatives and similar repositories for Nemea-Detectors

Users that are interested in Nemea-Detectors are comparing it to the libraries listed below

• jayjacobs / dga
  Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).
  ☆41Updated 9 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆106Updated 5 years ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆205Updated 3 years ago
• andrewaeva / DGA
  The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…
  ☆223Updated 8 years ago
• sooshie / Security-Data-Analysis
  A series of labs that will help users apply various data science techniques to security related data.
  ☆133Updated 10 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆102Updated 5 years ago
• CESNET / Nemea
  System for network traffic analysis and anomaly detection.
  ☆92Updated 6 months ago
• Cisco-Talos / file2pcap
  ☆174Updated 4 years ago
• sooshie / secrepo
  Sweet, sweet, secrepo.com html.
  ☆133Updated 4 years ago
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆213Updated 7 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆70Updated 7 years ago
• dnsdb / dnsdb-query
  DNSDB query scripts
  ☆75Updated 6 years ago
• eldondev / Snort
  An IDS (Couldn't find Snort on github when I wanted to fork)
  ☆122Updated 13 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆111Updated 12 years ago
• jeffsilverm / dpkt_doc
  Documentation, sample inputs, and sample programs that use the dpkt library
  ☆87Updated 9 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆249Updated last year
• 1ultimat3 / PcapViz
  Visualize network topologies and collect graph statistics based on pcap files
  ☆355Updated 2 years ago
• DavidJBianco / Clearcut
  Clearcut is a tool that uses machine learning to help you focus on the log entries that really need manual review
  ☆197Updated 9 years ago
• passivetotal / python_api
  Python abstract API for PassiveTotal services in the form of libraries and command line utilities.
  ☆86Updated 2 years ago
• jasonish / py-idstools
  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
  ☆284Updated 6 months ago
• JustinAzoff / zeek-pdns
  Passive DNS collection using Zeek
  ☆182Updated 2 years ago
• konstantinberlin / malware-windows-audit-log-detection
  Detection of malware using dynamic behavior and Windows audit logs
  ☆76Updated 10 years ago
• plashchynski / viewssld
  viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…
  ☆74Updated 8 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• corelight / http-stalling-detector
  Detect HTTP stalling attacks like slowloris with Bro
  ☆19Updated 7 years ago
• austin-taylor / flare
  An analytical framework for network traffic and behavioral analytics
  ☆457Updated 3 years ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated last year
• perdisci / amico
  AMICO - Accurate Behavior-Based Detection of Malware Downloads
  ☆31Updated 8 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago