Alternatives and similar repositories for prelude-correlator:

Users that are interested in prelude-correlator are comparing it to the libraries listed below

• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated 2 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 4 years ago
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆16Updated 7 months ago
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆14Updated 3 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 3 months ago
• grapl-security / grapl-analyzers
  Hosted analyzers built for Grapl
  ☆13Updated 2 years ago
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 2 years ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆24Updated 8 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 4 months ago
• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• swimlane / pyattck-data
  This repository contains generated contextual data utilized by pyattck.
  ☆18Updated 6 months ago
• amzn / zeek-plugin-tds
  Zeek network security monitor plugin that enables parsing of the Tabular Data Stream (TDS) protocol
  ☆25Updated 8 months ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 4 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆84Updated 5 years ago
• corelight / zeek-quic
  Bro analyzer that detects Google's QUIC protocol
  ☆10Updated 3 years ago
• MITRECND / d20
  Automated Static Analysis Framework
  ☆9Updated 2 years ago
• opendxl / opendxl-broker
  OpenDXL Broker is an open source version of a Data Exchange Layer (DXL) broker
  ☆13Updated 11 months ago
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆9Updated last year
• ptdropper / CVE-Scanner-for-your-SW-BOM
  CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.
  ☆17Updated 4 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• abhinavbom / Metasploit-Penetration-Testing-Cookbook-Codes
  Following repository contains source codes used in my two Books.
  ☆11Updated 9 years ago
• idaholab / EMV
  Exploit, Malware and Vulnerability Scoring Application
  ☆10Updated last year
• zeek / zeek-agent-framework
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Updated 4 years ago
• Prelude-SIEM / Prelude-SIEM
  The official Prelude SIEM GitHub of https://www.prelude-siem.org
  ☆23Updated 8 years ago
• dogoncouch / siemstress
  Very basic CLI SIEM (Security Information and Event Management system).
  ☆36Updated 6 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• OTRF / openhunt
  ☆33Updated 3 years ago
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆13Updated last year
• cisagov / sensitive-data-scanner
  A tool for detecting sensitive data in code repositories
  ☆14Updated 2 months ago
• honeydbio / honeydb-python
  HoneyDB Python Module
  ☆13Updated 11 months ago