OISF / suricata-trafficid

Related projects ⓘ

Alternatives and complementary repositories for suricata-trafficid

• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆29Updated last month
• Cyberg-ON / Timon-Rules
  Community-based CybergON-powered Suricata rules
  ☆12Updated 2 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 3 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆28Updated 4 years ago
• woanware / bgp-watcher
  Prototype system to monitor BGP routes and alert when anomalies are identified
  ☆14Updated 5 years ago
• team-cymru / iocs
  We publish indicators of compromise related to our stories here. See https://blog.team-cymru.com/ for more information.
  ☆9Updated 3 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆31Updated last month
• optiv / netneedle
  Network based steganography based control channels and chat.
  ☆8Updated 8 years ago
• Truvis / SyscallExtractorAnalyzer
  This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes
  ☆20Updated 3 years ago
• iot-onboarding / mud-visualizer
  mud-visualizer is a tool to visualize MUD files
  ☆9Updated 2 years ago
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆29Updated 2 years ago
• mozilla / zept
  INACTIVE - http://mzl.la/ghe-archive - Zeek Extreme Performance Tuning
  ☆26Updated 5 years ago
• caesar0301 / pcapdpi
  Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…
  ☆23Updated 8 years ago
• logstash-plugins / logstash-codec-nmap
  NMap XML decoding for logstash
  ☆28Updated 2 years ago
• advanced-threat-research / Ripple-20-Detection-Logic
  Ripple20 Critical Vulnerabilities - Detection Logic and Signatures
  ☆11Updated 3 years ago
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆30Updated 5 months ago
• DCSO / slinkwatch
  automatic enumeration and maintenance of Suricata monitoring interfaces
  ☆11Updated 4 years ago
• regit / suri-stats
  A tools to work on suricata stats.log file.
  ☆28Updated 9 years ago
• Benster900 / BlogProjects
  Various blog post projects.
  ☆10Updated 5 months ago
• zmap / pybulkwhois
  Python framework for manipulating bulk WHOIS data from RIRs
  ☆19Updated 2 years ago
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆20Updated last year
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated 10 months ago
• Security-Onion-Solutions / securityonion-nsmnow-admin-scripts
  ☆22Updated 4 years ago
• jedisct1 / ipgrep
  Extract, defang, resolve names and IPs from text
  ☆23Updated 10 months ago
• telekom-security / ewsposter
  collect logs and alerts from 27 honeypots and send it to backed (eg peba, geba), hpfeeds, influxdb or jSON file.
  ☆16Updated last year
• pentestit / recon-smtp
  smtp-user-enum.pl ported into a recon-ng module.
  ☆9Updated 10 years ago
• m-mizutani / dns-gazer
  DNS passive monitoring tool
  ☆16Updated 6 years ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 4 months ago