Alternatives and similar repositories for aushape:

Users that are interested in aushape are comparing it to the libraries listed below

• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆53Updated 3 weeks ago
• juju4 / ansible-zeek
  setup zeek, previously Bro IDS
  ☆18Updated 3 weeks ago
• chef-cookbooks / auditd
  Install and configure user mode auditd tools
  ☆34Updated 2 years ago
• StamusNetworks / KTS5
  Kibana 5 Templates for Suricata IDPS
  ☆43Updated 6 years ago
• stevegrubb / audit-explorer
  This is an R shiny app that visualizes audit data using many tools all in one app.
  ☆35Updated 3 years ago
• aabed / dockpot
  ☆47Updated 10 years ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆104Updated 10 months ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• zeek / zeekctl
  Tool for managing Zeek deployments.
  ☆54Updated last month
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆45Updated last month
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated 11 months ago
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆36Updated last year
• sealingtech / EDCOP
  Expandable Defensive Cyber Operations Platform
  ☆43Updated 2 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• juju4 / ansible-harden
  harden system (linux, unix...)
  ☆55Updated last week
• beave / sagan
  ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan
  ☆228Updated 4 years ago
• frohoff / grepcidr
  from http://www.pc-tools.net/unix/grepcidr/
  ☆90Updated 7 years ago
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆30Updated 2 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated this week
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆177Updated 6 months ago
• djcas9 / bro.vim
  bro.vim - A simple plugin for working with the bro scripting languages.
  ☆22Updated 5 years ago
• kgaughan / uwhoisd
  A 'Universal WHOIS' proxy server - you query it, it gives back the correct details
  ☆41Updated 6 months ago
• jameslikeslinux / duplog
  Syslog Deduplicator
  ☆16Updated 11 years ago
• gdestuynder / audisp-cef
  CEF plugin for audisp (Linux Audit)
  ☆23Updated 8 years ago
• sttor / awesome-osquery
  Osquery Resources
  ☆60Updated 5 years ago
• EricGershman / auditd-examples
  Collection of Auditd Examples and Presentations
  ☆83Updated 4 years ago
• iserko / logstash-input-cloudflare
  Logstash Input Plugin for Cloudflare logs
  ☆14Updated 5 years ago
• OpenSCAP / openscap-daemon
  Manages continuous scans of your infrastructure
  ☆105Updated 3 years ago
• fmanco / osquery-packs
  osquery query packs
  ☆14Updated 6 years ago