StamusNetworks / gophercapLinks
Accurate, modular, scalable PCAP manipulation tool written in Go.
☆89Updated last year
Alternatives and similar repositories for gophercap
Users that are interested in gophercap are comparing it to the libraries listed below
Sorting:
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆53Updated 2 months ago
- Suricata Extreme Performance Tuning guide - Mark II☆117Updated 7 years ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated last year
- Simple streaming pre-processor and enrichment tool for structured logs.☆11Updated 2 years ago
- Suricata Verification Tests - Testing Suricata Output☆109Updated this week
- Red Canary's eBPF Sensor☆107Updated last week
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆72Updated this week
- Go implementation of the Community ID flow hashing standard☆20Updated 2 months ago
- Suricata Extreme Performance Tuning guide☆209Updated 7 years ago
- suricata eve.json parser in Go☆15Updated 6 years ago
- gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…☆186Updated 2 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 9 months ago
- Open source endpoint agent providing host information to Zeek. [v2]☆83Updated last week
- Pure python parser for Snort/Suricata rules.☆33Updated last year
- Go Client for Suricata (Interacting via Socket)☆12Updated 4 years ago
- Zeek IDS Dockerfile☆101Updated 2 years ago
- Tiny nDPI based deep packet inspection daemons / toolkit.☆84Updated 3 weeks ago
- calculate flow information from PCAP and extract tcp streams☆70Updated 11 months ago
- ☆38Updated 7 months ago
- Suricata rule and intel index☆31Updated 2 months ago
- Wireshark plugin to display Suricata analysis info☆94Updated 3 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago
- Plugin providing AF_XDP support for Bro.☆14Updated 4 years ago
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆78Updated last year
- Meer is a "spooler" for Suricata / Sagan.☆30Updated 2 years ago
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".☆179Updated 8 months ago
- Zeek support for Community ID flow hashing.☆35Updated last year
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆26Updated last year
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- The Security Analyst’s Guide to Suricata☆56Updated last month