Alternatives and similar repositories for core:

Users that are interested in core are comparing it to the libraries listed below

• juju4 / ansible-zeek
  setup zeek, previously Bro IDS
  ☆17Updated last month
• sealingtech / EDCOP
  Expandable Defensive Cyber Operations Platform
  ☆43Updated 2 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆53Updated last month
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• zeek / zeekctl
  Tool for managing Zeek deployments.
  ☆54Updated this week
• OwlH-net / OwlH-Master
  OwlH Master API
  ☆24Updated 8 months ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• pevma / Suricata-Logstash-Templates
  Templates for Kibana/Logstash to use with Suricata IDPS
  ☆80Updated 8 years ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆101Updated 7 months ago
• CIRCL / cve-portal
  Common Vulnerabilities and Exposures - Portal
  ☆84Updated 7 years ago
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 6 years ago
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆30Updated 7 months ago
• StamusNetworks / KTS
  Kibana 4 Templates for Suricata IDPS
  ☆33Updated 8 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 6 years ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆93Updated 3 years ago
• opc40772 / suricata-graylog
  ☆23Updated 5 years ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 4 years ago
• MattCarothers / mhn-core-docker
  Core elements of the Modern Honey Network implemented in Docker
  ☆34Updated 2 years ago
• harvard-itsecurity / qradar-seculert-push
  Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!
  ☆18Updated 11 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆56Updated 3 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆113Updated 6 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated last year
• int13h / squert
  A Simple QUEry and Report Tool
  ☆142Updated 5 years ago
• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆24Updated 5 years ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 7 years ago