StamusNetworks / gophercap

Related projects ⓘ

Alternatives and complementary repositories for gophercap

• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 4 months ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆113Updated 6 years ago
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆76Updated last year
• utoni / nDPId
  Tiny nDPI based deep packet inspection daemons / toolkit.
  ☆67Updated this week
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆66Updated 6 months ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆78Updated last month
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆19Updated 2 months ago
• H21lab / tsharkVM
  tshark + ELK analytics virtual machine
  ☆66Updated 2 years ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆101Updated 4 months ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆102Updated last week
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆64Updated last week
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆66Updated last month
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆171Updated last month
• rhaist / surevego
  suricata eve.json parser in Go
  ☆14Updated 5 years ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆52Updated 5 months ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 2 months ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 3 years ago
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆28Updated last year
• secureworks / aristotle
  ☆36Updated 2 weeks ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆34Updated last year
• Gui774ume / ssh-probe
  monitor and protect SSH sessions with eBPF
  ☆65Updated 3 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆29Updated last month
• mozilla / zept
  INACTIVE - http://mzl.la/ghe-archive - Zeek Extreme Performance Tuning
  ☆26Updated 5 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆123Updated 2 months ago
• bfuzzy1 / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆89Updated last year
• google / gonids
  gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…
  ☆180Updated last year
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆204Updated 6 years ago
• sealingtech / EDCOP
  Expandable Defensive Cyber Operations Platform
  ☆43Updated 2 years ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆91Updated 3 years ago