Alternatives and similar repositories for Timon-Rules:

Users that are interested in Timon-Rules are comparing it to the libraries listed below

• B0fH / yara-suricata
  A Yara Lua output script for Suricata
  ☆19Updated 6 years ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• DCSO / slinkwatch
  automatic enumeration and maintenance of Suricata monitoring interfaces
  ☆11Updated 5 years ago
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆27Updated 7 years ago
• zmap / pybulkwhois
  Python framework for manipulating bulk WHOIS data from RIRs
  ☆21Updated 3 years ago
• wolfvan / YaraRET
  Carving tool based in Radare2 & Yara
  ☆16Updated 6 years ago
• jakewarren / suricata-rule-generator
  Quickly generate suricata rules for IOCs
  ☆29Updated 3 years ago
• woanware / bgp-watcher
  Prototype system to monitor BGP routes and alert when anomalies are identified
  ☆15Updated 6 years ago
• DCSO / Blog_CyTec
  Repository to provide files related to our blog articles.
  ☆16Updated last year
• Benster900 / BlogProjects
  Various blog post projects.
  ☆10Updated 10 months ago
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆29Updated last year
• advanced-threat-research / Ripple-20-Detection-Logic
  Ripple20 Critical Vulnerabilities - Detection Logic and Signatures
  ☆12Updated 3 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆61Updated 3 years ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated last year
• TKCERT / winnti-suricata-lua
  Suricata rules to detect Winnti communication
  ☆14Updated 7 years ago
• Security-Onion-Solutions / securityonion-nsmnow-admin-scripts
  ☆22Updated 5 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆101Updated 3 years ago
• bhdresh / SnortRules
  This is an open source Snort rules repository
  ☆30Updated 2 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 8 years ago
• CommunityHoneyNetwork / rdphoney
  Basic RDP honeypot script
  ☆32Updated 2 years ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 5 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆30Updated 3 weeks ago
• arvindpj007 / Suricata-Detect-DoS-Attack
  Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.
  ☆39Updated 4 years ago
• abzcoding / aptdetector
  Advanced Persistent Threat Detection Using Network Analysis
  ☆22Updated 6 years ago
• JJyyy / suricata-rules
  不定期更新suricata的检测规则
  ☆11Updated 5 years ago
• adi928 / brocata
  Porting Suricata to Bro signatures
  ☆6Updated 5 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 3 years ago
• cowbe0x004 / eximrce-CVE-2019-10149
  simple python socket connection to test if exim is vulnerable to CVE-2019-10149. The payload simply touch a file in /tmp/eximrce.
  ☆13Updated 5 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago