OISF / suricata-update
The tool for updating your Suricata rules.
☆266Updated 3 months ago
Alternatives and similar repositories for suricata-update:
Users that are interested in suricata-update are comparing it to the libraries listed below
- Suricata Verification Tests - Testing Suricata Output☆105Updated this week
- Scirius is a web application for Suricata ruleset management and threat hunting.☆646Updated 3 months ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆472Updated 2 months ago
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆448Updated this week
- Suricata rules for network anomaly detection☆156Updated this week
- Suricata Extreme Performance Tuning guide☆207Updated 6 years ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆282Updated last year
- Suricata IDS/IPS log analytics using the Elastic Stack.☆238Updated 3 years ago
- Suricata Extreme Performance Tuning guide - Mark II☆115Updated 6 years ago
- a network packet capture compiler☆197Updated 2 years ago
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆108Updated 10 months ago
- gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…☆183Updated 2 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆170Updated last year
- A Suricata Docker image.☆272Updated this week
- Passive Real-time Asset Detection System☆233Updated 9 months ago
- The Python SDK for AlienVault OTX☆370Updated 10 months ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆100Updated 3 years ago
- MISP Docker (XME edition)☆283Updated last year
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".☆176Updated 5 months ago
- Apache Metron☆59Updated 4 years ago
- Digital Bond's IDS/IPS rules for ICS and ICS protocols.☆143Updated 4 years ago
- A Zeek log writer plugin that publishes to Kafka.☆46Updated 2 months ago
- Mapping NSM rules to MITRE ATT&CK☆70Updated 4 years ago
- Mirror of https://github.com/zeek/zeek☆174Updated last year
- Zeek IDS Dockerfile☆101Updated 2 years ago
- Documentation of Cortex☆173Updated last year
- PCAP Samples for Different Post Exploitation Techniques☆354Updated 3 years ago
- Docker files for building Zeek.☆86Updated last year
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆151Updated last year
- Snort IDS/IPS log analytics using the Elastic Stack.☆86Updated 3 years ago