Alternatives and similar repositories for gophercap

Users that are interested in gophercap are comparing it to the libraries listed below

• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆54Updated 2 months ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated last year
• rhaist / surevego
  suricata eve.json parser in Go
  ☆15Updated 6 years ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆117Updated 7 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆110Updated this week
• ccdcoe / go-peek
  Simple streaming pre-processor and enrichment tool for structured logs.
  ☆11Updated 2 years ago
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆20Updated 2 months ago
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆30Updated 2 years ago
• utoni / nDPId
  Tiny nDPI based deep packet inspection daemons / toolkit.
  ☆84Updated last month
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆74Updated 3 weeks ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆83Updated this week
• google / gonids
  gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…
  ☆186Updated 2 years ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆82Updated 2 months ago
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆181Updated 9 months ago
• kung-foo / freki
  Freki is a tool to manipulate packets in usermode using NFQUEUE and golang.
  ☆58Updated 2 years ago
• alphasoc / nfr
  A lightweight tool to score network traffic and flag anomalies
  ☆123Updated 11 months ago
• 0x00000013 / huakiwi
  eBPF-based EDR for Linux
  ☆18Updated 10 months ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆107Updated last month
• fmadio / pcap2json
  High Speed PCAP to JSON conversion utility
  ☆103Updated last year
• jonpulsifer / dnsmon-go
  A golang DNS monitor inspired by https://github.com/gamelinux/passivedns
  ☆29Updated 2 months ago
• freetaxii / libstix2
  APIs for generating STIX 2.1 and TAXII 2.1 messages with Go (Golang)
  ☆53Updated 7 months ago
• mosajjal / dnsmonster
  Passive DNS Capture and Monitoring Toolkit
  ☆332Updated last month
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 9 months ago
• knqyf263 / ndff
  A flow-based network monitor with Deep Packet Inspection
  ☆29Updated 8 years ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 2 years ago
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆107Updated last year
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆26Updated last year
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆78Updated last year
• runZeroInc / recog-go
  Recog-Go: Pattern Recognition using Rapid7 Recog
  ☆111Updated last year
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago