OISF / suricata-updateLinks
The tool for updating your Suricata rules.
☆277Updated 2 weeks ago
Alternatives and similar repositories for suricata-update
Users that are interested in suricata-update are comparing it to the libraries listed below
Sorting:
- Suricata, Snort and Zeek IDS rule and pcap testing system☆483Updated 2 weeks ago
- Scirius is a web application for Suricata ruleset management and threat hunting.☆657Updated last month
- Suricata Verification Tests - Testing Suricata Output☆112Updated 2 weeks ago
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆461Updated this week
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆282Updated 3 weeks ago
- Suricata IDS/IPS log analytics using the Elastic Stack.☆239Updated 4 years ago
- Suricata rules for network anomaly detection☆167Updated 3 months ago
- Suricata Extreme Performance Tuning guide☆211Updated 7 years ago
- Zeek IDS Dockerfile☆101Updated 2 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark☆439Updated last year
- Suricata Extreme Performance Tuning guide - Mark II☆118Updated 7 years ago
- Wazuh - Ruleset☆463Updated 10 months ago
- A Zeek log writer plugin that publishes to Kafka.☆49Updated this week
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆111Updated last year
- A Suricata Docker image.☆291Updated last week
- Passive Real-time Asset Detection System☆244Updated last year
- a network packet capture compiler☆201Updated 3 years ago
- Open Source Security Information and event Management☆98Updated 9 years ago
- Super Next generation Advanced Reactive honEypot☆467Updated last year
- Security event correlation engine for ELK stack☆440Updated last year
- Tool for managing Zeek deployments.☆56Updated this week
- Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…☆184Updated 4 months ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆421Updated this week
- A set of zeek scripts providing a module for tracking and correlating abnormal DNS behavior.☆35Updated 6 months ago
- The Python SDK for AlienVault OTX☆380Updated last year
- MISP Docker (XME edition)☆282Updated last year
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆104Updated 4 years ago
- Mapping the MITRE ATT&CK Matrix with Osquery☆800Updated 2 years ago
- Apache Metron☆60Updated 4 years ago