OISF / suricata-update
The tool for updating your Suricata rules.
☆250Updated 2 months ago
Related projects: ⓘ
- Suricata and Snort IDS rule and pcap testing system☆435Updated last week
- Suricata Verification Tests - Testing Suricata Output☆99Updated this week
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆420Updated last month
- Scirius is a web application for Suricata ruleset management and threat hunting.☆622Updated last month
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆273Updated 10 months ago
- Suricata IDS/IPS log analytics using the Elastic Stack.☆230Updated 3 years ago
- Suricata rules for network anomaly detection☆152Updated 3 weeks ago
- a network packet capture compiler☆191Updated 2 years ago
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆105Updated 4 months ago
- Suricata Extreme Performance Tuning guide☆202Updated 6 years ago
- Suricata Extreme Performance Tuning guide - Mark II☆113Updated 6 years ago
- ☆142Updated this week
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆166Updated last year
- Mirror of https://github.com/zeek/zeek☆164Updated last year
- A Zeek log writer plugin that publishes to Kafka.☆45Updated 4 months ago
- A Suricata Docker image.☆251Updated 2 months ago
- The Python SDK for AlienVault OTX☆354Updated 4 months ago
- gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…☆179Updated last year
- Zeek IDS Dockerfile☆99Updated last year
- Wazuh - Ruleset☆416Updated last year
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".☆167Updated last year
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆349Updated this week
- Mapping the MITRE ATT&CK Matrix with Osquery☆769Updated last year
- Super Next generation Advanced Reactive honEypot☆440Updated 3 months ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆98Updated 3 years ago
- Docker files for building Zeek.☆84Updated 11 months ago
- PCAP Samples for Different Post Exploitation Techniques☆339Updated 3 years ago
- Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark☆423Updated 8 months ago
- Passive Real-time Asset Detection System☆229Updated 3 months ago
- Apache Metron☆59Updated 3 years ago