StamusNetworks / gophercapLinks
Accurate, modular, scalable PCAP manipulation tool written in Go.
☆89Updated last year
Alternatives and similar repositories for gophercap
Users that are interested in gophercap are comparing it to the libraries listed below
Sorting:
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated last year
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆53Updated last month
- suricata eve.json parser in Go☆15Updated 6 years ago
- Go implementation of the Community ID flow hashing standard☆20Updated last month
- Suricata Extreme Performance Tuning guide - Mark II☆117Updated 7 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 8 months ago
- Simple streaming pre-processor and enrichment tool for structured logs.☆11Updated 2 years ago
- ☆38Updated 7 months ago
- Red Canary's eBPF Sensor☆107Updated 2 weeks ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆71Updated 2 weeks ago
- gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…☆186Updated 2 years ago
- Wireshark plugin to display Suricata analysis info☆94Updated 3 years ago
- tshark + ELK analytics virtual machine☆67Updated 4 months ago
- Tiny nDPI based deep packet inspection daemons / toolkit.☆81Updated this week
- OpenWRT Suricata package☆50Updated 7 years ago
- Suricata Verification Tests - Testing Suricata Output☆108Updated this week
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆81Updated last month
- Open source endpoint agent providing host information to Zeek. [v2]☆81Updated last week
- INACTIVE - http://mzl.la/ghe-archive - Zeek Extreme Performance Tuning☆26Updated 5 years ago
- Argus clients program repo☆22Updated 2 weeks ago
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆26Updated last year
- OwlH Master API☆24Updated last month
- A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to …☆110Updated 2 months ago
- Meer is a "spooler" for Suricata / Sagan.☆30Updated last year
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆77Updated last year
- QUICk - a go library based on gopacket for analyzing QUIC CHLO messages☆22Updated 4 years ago
- Zeek IDS Dockerfile☆101Updated 2 years ago
- Pure python parser for Snort/Suricata rules.☆32Updated last year
- Plugin providing AF_XDP support for Bro.☆14Updated 4 years ago
- Passive DNS Capture and Monitoring Toolkit☆329Updated 2 weeks ago