Alternatives and similar repositories for suricata-update:

Users that are interested in suricata-update are comparing it to the libraries listed below

• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆474Updated 3 months ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆106Updated this week
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆648Updated this week
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆455Updated 2 weeks ago
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆238Updated 3 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆159Updated this week
• jasonish / py-idstools
  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
  ☆281Updated last year
• secureworks / flowsynth
  a network packet capture compiler
  ☆198Updated 2 years ago
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆207Updated 7 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆170Updated last year
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆116Updated 7 years ago
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆109Updated 11 months ago
• sbousseaden / PCAP-ATTACK
  PCAP Samples for Different Post Exploitation Techniques
  ☆356Updated 3 years ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆237Updated 10 months ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 2 years ago
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆177Updated 6 months ago
• google / gonids
  gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…
  ☆185Updated 2 years ago
• MISP / x_old_misp_docker
  MISP Docker (XME edition)
  ☆282Updated last year
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆585Updated 9 months ago
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆81Updated 4 years ago
• TheHive-Project / TheHive4py
  Python API Client for TheHive
  ☆223Updated last week
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• SuperCowPowers / zat
  Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark
  ☆434Updated last year
• bro / bro
  Mirror of https://github.com/zeek/zeek
  ☆174Updated 2 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆168Updated 2 weeks ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆401Updated 2 weeks ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆44Updated 6 years ago
• mitre-attack / tram
  Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.
  ☆349Updated 3 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago