Cyberg-ON / Timon-Rules

Related projects: ⓘ

• B0fH / yara-suricata
  A Yara Lua output script for Suricata
  ☆19Updated 5 years ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆17Updated last year
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆28Updated last year
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆28Updated last month
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 5 months ago
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆51Updated last year
• ipworkx / ecs-suricata
  ☆11Updated 4 years ago
• NVISOsecurity / sigma-public
  Generic Signature Format for SIEM Systems
  ☆17Updated last year
• polylogyx / plgx-esp
  ☆19Updated this week
• wolfvan / YaraRET
  Carving tool based in Radare2 & Yara
  ☆16Updated 5 years ago
• rapid7 / insightconnect-workflows
  ☆25Updated this week
• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆25Updated 5 years ago
• jakewarren / suricata-rule-generator
  Quickly generate suricata rules for IOCs
  ☆28Updated 3 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 3 years ago
• alphaSeclab / malware-ioc-hash
  Collection of malware ioc hashes from blog posts. A Python script is provided to search through it.
  ☆16Updated 4 years ago
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆28Updated 2 years ago
• jasonish / suricata-trafficid.ARCHIVED
  Application and service identification rules for Suricata
  ☆29Updated last year
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆32Updated 2 years ago
• alertflex / altprobe
  collector/runner
  ☆65Updated 10 months ago
• NextronSystems / simplesyslog
  Simple SYSLOG client in Go
  ☆21Updated 3 months ago
• advanced-threat-research / Ripple-20-Detection-Logic
  Ripple20 Critical Vulnerabilities - Detection Logic and Signatures
  ☆11Updated 3 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆32Updated 2 years ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆36Updated last year
• botherder / go-autoruns
  Collect autorun records from running system
  ☆59Updated 2 years ago
• bro / bro-osquery
  Bro integration with osquery
  ☆14Updated last year
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 4 years ago
• EmergingThreats / log4shell-detection
  ☆12Updated 2 years ago
• quadrantsec / sagan-rules
  ☆25Updated this week
• activeshadow / go-atomicredteam
  go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…
  ☆45Updated last year
• TKCERT / winnti-suricata-lua
  Suricata rules to detect Winnti communication
  ☆14Updated 6 years ago