Alternatives and similar repositories for suricata-language-server

Users that are interested in suricata-language-server are comparing it to the libraries listed below

• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆158Updated 6 months ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆78Updated 3 years ago
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆169Updated 2 weeks ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆36Updated 2 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆173Updated last week
• tenzir / threatbus
  🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
  ☆264Updated 2 years ago
• secureworks / aristotle
  ☆38Updated 11 months ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆86Updated last month
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 10 months ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆59Updated 5 months ago
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆37Updated last month
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆135Updated last year
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆32Updated last month
• 3CORESec / S2AN
  S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
  ☆88Updated 2 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 4 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆37Updated 3 years ago
• mitre / atomic
  A MITRE Caldera plugin
  ☆46Updated 2 weeks ago
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆141Updated 8 months ago
• socprime / SigmaUI
  SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
  ☆189Updated 4 years ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆40Updated 2 years ago
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆212Updated 3 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆115Updated this week
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆53Updated 3 years ago
• mitre / stockpile
  A CALDERA plugin
  ☆79Updated last week
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆66Updated last year
• opencybersecurityalliance / kestrel-huntbook
  This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)
  ☆33Updated last year
• elcabezzonn / Pcaps
  ☆54Updated last year
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆156Updated last year
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆99Updated 2 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago