Alternatives and similar repositories for anomaly-detection-and-monitoring

Users that are interested in anomaly-detection-and-monitoring are comparing it to the libraries listed below

• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• darvid / nessusbeat
  A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.
  ☆31Updated 7 years ago
• iagox86 / dnsutils
  ☆22Updated 7 years ago
• SecarmaLabs / IoTChecklist
  Baseline IoT security checklist. Consider security as early in development as possible and reap the rewards.
  ☆30Updated 7 years ago
• Security-Onion-Solutions / securityonion-docker-hh
  ☆20Updated 5 years ago
• carolynduby / ApacheMetronWorkshop
  Apache Metron Workshop Lab materials and instructions.
  ☆35Updated 5 years ago
• tintinweb / scapy-ssh
  ssh key exchange layer for scapy
  ☆13Updated 10 years ago
• AceRockson / WAFFLE
  Web Application Firewall For Limited Exploitation
  ☆17Updated 7 years ago
• lpredova / ressie
  👓 monitoring, alerting and threat analysis for ELK stack
  ☆11Updated 8 years ago
• logstash-plugins / logstash-codec-nmap
  NMap XML decoding for logstash
  ☆28Updated 2 years ago
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆26Updated 7 years ago
• fb1h2s / sandy
  Static and Dynamic exploit analysis framework.
  ☆22Updated 10 years ago
• tenable / nasl
  A parser for NASL.
  ☆45Updated 2 years ago
• netifera / netifera
  Open Source Network Security Platform
  ☆40Updated 16 years ago
• alertflex / cnode
  alertflex controller
  ☆10Updated last month
• haka-security / hakabana
  Hakabana monitoring tool using Haka, ElastcSearch and Kibana
  ☆20Updated 10 years ago
• danitfk / VulnWhisperer-Stack
  VulnWhisperer Stack (ELK + VulnWhisperer + OpenVAS + Nessus)
  ☆13Updated 6 years ago
• farsightsec / sie-dns-sensor
  Debian and Red Hat packaging for SIE DNS sensor
  ☆15Updated 2 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆101Updated 3 years ago
• HPE-AppliedSecurityResearch / maltese
  Maltese - Malware Traffic Emulator
  ☆26Updated 8 years ago
• eSentire / malfeed
  Feed for verious malicious IPs such as malware and botnets
  ☆12Updated 8 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• trevordavenport / MasscanAutomation
  Masscan integrated with Shodan API
  ☆41Updated 7 years ago
• MalwareSoup / MitreAttack
  Python wrapper for the Mitre ATT&CK framework API
  ☆29Updated 7 years ago
• jantonakos / ThreatHuntingExcursions
  Code, commands, and chatter about Threat Hunting.
  ☆35Updated 5 years ago
• kfiros / ssh-alert
  Detect SSH connection attempts in real time using ptrace
  ☆9Updated 9 years ago
• joesecurity / Joe-Sandbox-Bro
  JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox
  ☆45Updated 5 years ago
• pevma / Suricata-Logstash-Templates
  Templates for Kibana/Logstash to use with Suricata IDPS
  ☆80Updated 9 years ago
• sethhall / domain-tld
  Zeek script library for getting the effective TLD of a domain.
  ☆14Updated last year
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago