Alternatives and similar repositories for core

Users that are interested in core are comparing it to the libraries listed below

• zeek / zeekctl
  Tool for managing Zeek deployments.
  ☆56Updated last month
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 4 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆109Updated 6 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• Security-Onion-Solutions / securityonion-docker
  Docker files for Security Onion
  ☆41Updated 4 years ago
• zeek / zeek-netcontrol
  Connectors for the Zeek NetControl framework
  ☆19Updated 3 months ago
• opc40772 / suricata-graylog
  ☆23Updated 5 years ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• StamusNetworks / KTS
  Kibana 4 Templates for Suricata IDPS
  ☆33Updated 8 years ago
• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆24Updated 6 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 6 years ago
• harvard-itsecurity / qradar-seculert-push
  Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!
  ☆18Updated 11 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated last month
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• sealingtech / EDCOP
  Expandable Defensive Cyber Operations Platform
  ☆43Updated 2 years ago
• OwlH-net / OwlH-Master
  OwlH Master API
  ☆24Updated last month
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 2 years ago
• blacktop / docker-bro
  Bro IDS Dockerfile
  ☆129Updated 5 years ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 8 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆114Updated 6 years ago
• MattCarothers / mhn-core-docker
  Core elements of the Modern Honey Network implemented in Docker
  ☆34Updated 3 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated this week
• telekom-security / listbot
  🤖 Daily updated translation maps for T-Pot
  ☆22Updated last year
• mitre / multiscanner-ansible
  Ansible configurations for distributed MultiScanner installations
  ☆14Updated 6 years ago