Alternatives and similar repositories for anomaly-detection-and-monitoring

Users that are interested in anomaly-detection-and-monitoring are comparing it to the libraries listed below

• haka-security / hakabana
  Hakabana monitoring tool using Haka, ElastcSearch and Kibana
  ☆20Updated 10 years ago
• farsightsec / sie-dns-sensor
  Debian and Red Hat packaging for SIE DNS sensor
  ☆15Updated 2 years ago
• kfiros / ssh-alert
  Detect SSH connection attempts in real time using ptrace
  ☆9Updated 9 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆109Updated 6 years ago
• eSentire / malfeed
  Feed for verious malicious IPs such as malware and botnets
  ☆12Updated 9 years ago
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆54Updated last year
• treussart / ProbeManager
  Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...
  ☆72Updated 6 years ago
• logstash-plugins / logstash-codec-nmap
  NMap XML decoding for logstash
  ☆28Updated 2 years ago
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆31Updated last year
• auditNG / go-audit-container
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆16Updated 6 years ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 5 years ago
• danitfk / VulnWhisperer-Stack
  VulnWhisperer Stack (ELK + VulnWhisperer + OpenVAS + Nessus)
  ☆13Updated 6 years ago
• Security-Onion-Solutions / securityonion-docker-hh
  ☆20Updated 5 years ago
• farsightsec / dnstable
  encoding format, library, and utilities for passive DNS data
  ☆27Updated last year
• mozilla / zept
  INACTIVE - http://mzl.la/ghe-archive - Zeek Extreme Performance Tuning
  ☆26Updated 5 years ago
• alertflex / cnode
  alertflex controller
  ☆10Updated 3 months ago
• darvid / nessusbeat
  A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.
  ☆31Updated 7 years ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 4 years ago
• OTRF / openhunt
  ☆34Updated 4 years ago
• sethhall / credit-card-exposure
  Detect credit card exposures with Bro
  ☆15Updated last year
• Benster900 / BlogProjects
  Various blog post projects.
  ☆10Updated last year
• trisulnsm / apps
  Plugin packages that provide custom visualizations and analytics capabilities to Trisul Network Analytics.
  ☆16Updated last week
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆26Updated 7 years ago
• Cymmetria / StrutsHoneypot
  Struts Apache 2 based honeypot as well as a detection module for Apache 2 servers
  ☆71Updated 8 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• lpredova / ressie
  👓 monitoring, alerting and threat analysis for ELK stack
  ☆11Updated 8 years ago
• iagox86 / dnsutils
  ☆22Updated 7 years ago
• robbyFux / Ragpicker
  Ragpicker is a Plugin based malware crawler with pre-analysis and reporting functionalities. Use this tool if you are testing antivirus p…
  ☆93Updated 9 years ago
• OpenSOC / opensoc-ui
  User interface for OpenSOC
  ☆100Updated 9 years ago