Alternatives and similar repositories for anomaly-detection-and-monitoring:

Users that are interested in anomaly-detection-and-monitoring are comparing it to the libraries listed below

• Security-Onion-Solutions / securityonion-docker-hh
  ☆20Updated 4 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 8 years ago
• alertflex / cnode
  alertflex controller
  ☆10Updated last week
• auditNG / go-audit-container
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆16Updated 6 years ago
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆31Updated 9 months ago
• CIRCL / compliance
  Legal, procedural and policies document templates for operating an IRT
  ☆64Updated last year
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆27Updated 7 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• Benster900 / BlogProjects
  Various blog post projects.
  ☆10Updated 9 months ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 4 years ago
• danitfk / VulnWhisperer-Stack
  VulnWhisperer Stack (ELK + VulnWhisperer + OpenVAS + Nessus)
  ☆13Updated 6 years ago
• jasonish / docker-suricata-elk
  [ABANDONED] A Docker container running Suricata and the ELK stack.
  ☆22Updated 9 years ago
• HPE-AppliedSecurityResearch / maltese
  Maltese - Malware Traffic Emulator
  ☆26Updated 8 years ago
• darvid / nessusbeat
  A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.
  ☆31Updated 7 years ago
• haka-security / hakabana
  Hakabana monitoring tool using Haka, ElastcSearch and Kibana
  ☆20Updated 10 years ago
• malice-plugins / yara
  Malice Yara Plugin
  ☆30Updated 5 years ago
• farsightsec / dnstable
  encoding format, library, and utilities for passive DNS data
  ☆26Updated last year
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 4 years ago
• stratosphereips / StratosphereLibSlips
  This is the C version of the StratosphereLinuxIPS. It is mainly used for integration with Snort and other IDSs.
  ☆12Updated 8 years ago
• kfiros / ssh-alert
  Detect SSH connection attempts in real time using ptrace
  ☆9Updated 9 years ago
• farsightsec / sie-dns-sensor
  Debian and Red Hat packaging for SIE DNS sensor
  ☆15Updated last year
• mozilla / zept
  INACTIVE - http://mzl.la/ghe-archive - Zeek Extreme Performance Tuning
  ☆26Updated 5 years ago
• lpredova / ressie
  👓 monitoring, alerting and threat analysis for ELK stack
  ☆11Updated 8 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• joesecurity / Joe-Sandbox-Bro
  JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox
  ☆44Updated 5 years ago
• tnt1200 / passive-dns
  passive dns collector
  ☆10Updated 8 years ago
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆54Updated last year
• logstash-plugins / logstash-codec-nmap
  NMap XML decoding for logstash
  ☆28Updated 2 years ago
• chrislee35 / visualfirewall
  VisualFirewall/IDS is a research-grade Firewall and IDS visualization tool that aims to provide a highly-informative interface of network…
  ☆15Updated 10 years ago
• midnightslacker / threat_intel
  Gather and compile open source threat intelligence feeds.
  ☆39Updated 3 years ago