Alternatives and similar repositories for CHN-Server:

Users that are interested in CHN-Server are comparing it to the libraries listed below

• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 4 years ago
• csirtgadgets / bearded-avenger-deploymentkit
  CIFv3 DeploymentKit
  ☆64Updated 4 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• certtools / intelmq-feeds-documentation
  Cyber Threat Intelligence Feeds
  ☆65Updated 10 months ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆53Updated 2 months ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆52Updated 3 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆102Updated 3 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆66Updated 4 years ago
• corelight / http-stalling-detector
  Detect HTTP stalling attacks like slowloris with Bro
  ☆19Updated 7 years ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆102Updated 8 months ago
• brakmic / Sinkholes
  Malware Sinkhole List in various formats
  ☆102Updated 2 years ago
• jpsenior / threataggregator
  Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…
  ☆79Updated 9 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• jtschichold / panwdbl
  Simple block lists hub for PAN-OS DBL feature
  ☆35Updated 6 years ago
• Nclose-ZA / elastalert_hive_alerter
  This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.
  ☆27Updated 3 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 3 years ago
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated last year
• jbaggs / anomalous-dns
  A set of zeek scripts providing a module for tracking and correlating abnormal DNS behavior.
  ☆33Updated 2 months ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆67Updated 4 years ago
• carbonblack / cbfeeds
  Carbon Black Feeds
  ☆72Updated last year
• 401trg / detections
  This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…
  ☆121Updated 3 years ago
• TW-NCERT / ctifeeds
  Cyber Threat Intelligence Feeds
  ☆94Updated 8 years ago
• armedpot / honeytrap
  Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner
  ☆43Updated 3 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆183Updated last year
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆39Updated last year
• securitydistractions / elastimispstash
  ☆29Updated 4 years ago
• SMAPPER / NXLog-AutoConfig
  ☆48Updated 4 years ago
• dgunter / evtxtoelk
  A lightweight tool to load Windows Event Log evtx files into Elasticsearch.
  ☆115Updated 4 years ago