StamusNetworks / suricata-4-analystsView external linksLinks
The Security Analyst’s Guide to Suricata
☆61Apr 28, 2025Updated 9 months ago
Alternatives and similar repositories for suricata-4-analysts
Users that are interested in suricata-4-analysts are comparing it to the libraries listed below
Sorting:
- ☆38Nov 20, 2025Updated 2 months ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆84Feb 8, 2026Updated last week
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Nov 9, 2022Updated 3 years ago
- Full packet capture with flow cutoff, rotation, and compression☆15Sep 18, 2018Updated 7 years ago
- Suricata rule and intel index☆33Jan 13, 2026Updated last month
- Packet captures of malicious traffic for analysis using Wireshark☆64Jul 10, 2023Updated 2 years ago
- A tools to work on suricata stats.log file.☆29Oct 14, 2015Updated 10 years ago
- ☆15Feb 21, 2025Updated 11 months ago
- Repository to provide files related to our blog articles.☆16May 26, 2025Updated 8 months ago
- provides a Suricata Eve output for Kafka with Suricate Eve plugin☆15Nov 25, 2021Updated 4 years ago
- Wireshark plugin to display Suricata analysis info☆95Nov 5, 2021Updated 4 years ago
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆29Jul 24, 2023Updated 2 years ago
- Python libary to normalize Yara signatures☆19Oct 9, 2020Updated 5 years ago
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Jan 10, 2025Updated last year
- A curated list of awesome things related to Suricata☆219Nov 21, 2025Updated 2 months ago
- Pure python parser for Snort/Suricata rules.☆33Mar 13, 2024Updated last year
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆20May 25, 2022Updated 3 years ago
- MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats☆56Feb 4, 2026Updated last week
- ☆11Nov 26, 2025Updated 2 months ago
- A Python implementation of the Community ID flow hashing standard☆24Nov 29, 2023Updated 2 years ago
- INACTIVE - http://mzl.la/ghe-archive - Zeek Extreme Performance Tuning☆26Oct 10, 2019Updated 6 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆24Jul 9, 2021Updated 4 years ago
- Passive DNS server interface compliant to "Common Output Format"☆10Sep 19, 2016Updated 9 years ago
- Dockerized Zeek☆12Mar 9, 2024Updated last year
- A curated list of CTF frameworks, libraries, resources and softwares☆10Nov 11, 2015Updated 10 years ago
- Validate if afpacket PACKET_FANOUT_HASH is working properly☆25May 19, 2022Updated 3 years ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Dec 14, 2021Updated 4 years ago
- You're busted!☆27Dec 16, 2019Updated 6 years ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Aug 19, 2022Updated 3 years ago
- The Stamus Networks App for Splunk allows Splunk Enterprise users to extract information and insights from both the Stamus Security Plat…☆13Jan 7, 2026Updated last month
- 🖼 imgify - Convert any file to PNG and back.☆13Oct 20, 2025Updated 3 months ago
- ☆15Mar 13, 2018Updated 7 years ago
- Suricata Verification Tests - Testing Suricata Output☆118Updated this week
- a network packet capture compiler☆205Apr 28, 2022Updated 3 years ago
- Quickly generate suricata rules for IOCs☆28Apr 30, 2021Updated 4 years ago
- DHCP Fingerprinting☆31Dec 15, 2020Updated 5 years ago
- Meer is a "spooler" for Suricata / Sagan.☆30Jun 21, 2023Updated 2 years ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆57Nov 20, 2025Updated 2 months ago
- A collection of pcaps☆16Jul 5, 2015Updated 10 years ago