Alternatives and similar repositories for safed

Users that are interested in safed are comparing it to the libraries listed below

• farhanfaisal / DNSblacklist
  A shell script to download malware domains from various sources, and configuring unbound DNS config file to be used as a local recursive …
  ☆18Updated 10 years ago
• Sheridan / el2sl
  Windows Event log to *nix syslog sender
  ☆26Updated 12 years ago
• amv42 / sshd-honeypot
  ☆26Updated 6 years ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• Benster900 / BlogProjects
  Various blog post projects.
  ☆10Updated 11 months ago
• darvid / nessusbeat
  A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.
  ☆31Updated 7 years ago
• xeraa / auditbeat-in-action
  Demo for Elastic's Auditbeat and SIEM
  ☆24Updated 3 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆46Updated 2 months ago
• Cyberg-ON / Timon-Rules
  Community-based CybergON-powered Suricata rules
  ☆12Updated 2 years ago
• StamusNetworks / KTS5
  Kibana 5 Templates for Suricata IDPS
  ☆43Updated 7 years ago
• Security-Onion-Solutions / securityonion-nsmnow-admin-scripts
  ☆22Updated 5 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆104Updated 4 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• ceramicskate0 / SWELF
  Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at ht…
  ☆24Updated last year
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆31Updated 11 months ago
• TKCERT / winnti-suricata-lua
  Suricata rules to detect Winnti communication
  ☆14Updated 7 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• firehol / infrastructure
  Project infrastructure for FireHOL
  ☆23Updated 4 years ago
• xme / fpc
  Full Packet Capture for the Masses
  ☆14Updated 6 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 8 months ago
• alertflex / altprobe
  collector/runner
  ☆65Updated 2 months ago
• ioerror / sslscan
  sslscan tests SSL/TLS enabled services to discover supported cipher suites
  ☆65Updated 13 years ago
• maliceio / malice-av
  Malice AntiVirus Plugins
  ☆116Updated 6 years ago
• jasonish / suricata-trafficid.ARCHIVED
  Application and service identification rules for Suricata
  ☆29Updated 2 years ago
• treussart / ProbeManager
  Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...
  ☆72Updated 6 years ago
• blazeinfosec / Flame
  Flame - Send vulnerabilities reports to SIEM
  ☆15Updated 8 years ago
• mitre / multiscanner-ansible
  Ansible configurations for distributed MultiScanner installations
  ☆14Updated 6 years ago
• topranks / MS17-010_SUBNET
  MS17-010 Windows SMB RCE -- Full subnet scanner
  ☆24Updated 8 years ago
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆30Updated 4 months ago
• CIRCL / IMAP-Proxy
  Modular IMAP proxy (including PyCIRCLeanMail and MISP forward modules)
  ☆30Updated 6 years ago