Alternatives and similar repositories for suricata-sample-data

Users that are interested in suricata-sample-data are comparing it to the libraries listed below

• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆81Updated 10 months ago
• vlegoy / rcATT
  A python app to predict Att&ck tactics and techniques from cyber threat reports
  ☆123Updated last year
• ALFA-group / BRON
  "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…
  ☆95Updated 11 months ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 9 months ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• li-zhenyuan / Knowledge-enhanced-Attack-Graph
  AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports
  ☆152Updated 2 years ago
• dgkim0803 / CTIMiner
  CTI database generator and public dataset
  ☆21Updated 5 years ago
• zeek-flowmeter / zeek-flowmeter
  A Zeek script to generate features based on timing, volume and metadata for traffic classification.
  ☆56Updated 4 years ago
• ksatvat / EXTRACTOR
  ☆77Updated 2 years ago
• FiveDirections / OpTC-data
  ☆111Updated 5 years ago
• arvindpj007 / Suricata-Detect-DoS-Attack
  Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.
  ☆39Updated 5 years ago
• ehsanaghaei / SecureBERT
  SecureBERT is a domain-specific language model to represent cybersecurity textual data.
  ☆93Updated 11 months ago
• thereisnotime / Snort-Rules
  Collection of Snort 2/3 rules.
  ☆36Updated 7 years ago
• CSIRT-MU / AIDA-Framework
  A framework for the Analysis of Intrusion Detection Alerts
  ☆17Updated 3 years ago
• shramos / pcap-splitter
  Pcap-splitter allows you to split a pcap file into subsets of pcap files based on sessions, flows, ip addresses, number of bytes, number …
  ☆65Updated 6 years ago
• tudelft-cda-lab / SAGE
  [TDSC 2021] IntruSion alert-driven Attack Graph Extractor. https://ieeexplore.ieee.org/document/9557854
  ☆37Updated 11 months ago
• mannirulz / BotDAD
  Anomaly detection based on DNS traffic analysis
  ☆53Updated 4 years ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆44Updated 6 years ago
• yukh1402 / cti-stix-diamond-activity-attack-graph
  STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling
  ☆32Updated 6 months ago
• jackaduma / ThreatReportExtractor
  Extracting Attack Behavior from Threat Reports
  ☆77Updated 2 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆104Updated 3 years ago
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆26Updated last year
• Kirtar22 / ATTACK-Threat_Intel
  Graph Representation of MITRE ATT&CK's CTI data
  ☆48Updated 5 years ago
• risksense / mulval
  A logic-based enterprise network security analyzer
  ☆124Updated 2 years ago
• basel-a / SMET
  SMET : Semantic Mapping of CVE to ATT&CK and its Application to Cybersecurity
  ☆47Updated 9 months ago
• aptresearch / datasets
  ☆24Updated 4 years ago
• andrewaeva / DGA
  The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…
  ☆219Updated 7 years ago
• ait-aecid / kyoushi-environment
  Scripts to deploy virtual testbed for log data analysis and anomaly detection.
  ☆25Updated last year
• mehgrmlhmpf / AttackGraphGeneratorMasterThesis
  This work shows the viability of automatically generated attack graphs that are used for adversary behavior execution in industrial contr…
  ☆12Updated 4 years ago
• Korving-F / doh-tunnel-dataset
  DNS tunneling over DoH Dataset
  ☆11Updated 2 years ago