Alternatives and similar repositories for netbeacon

Users that are interested in netbeacon are comparing it to the libraries listed below

• woanware / bgp-watcher
  Prototype system to monitor BGP routes and alert when anomalies are identified
  ☆15Updated 6 years ago
• WithSecureLabs / FLAIR
  F-Secure Lightweight Acqusition for Incident Response (FLAIR)
  ☆17Updated 4 years ago
• opendxl / opendxl-broker
  OpenDXL Broker is an open source version of a Data Exchange Layer (DXL) broker
  ☆14Updated last year
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• wolfvan / YaraRET
  Carving tool based in Radare2 & Yara
  ☆16Updated 6 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated last year
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• ipworkx / ecs-suricata
  ☆12Updated 5 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆37Updated 3 years ago
• corelight / zerologon
  Zeek package to detect Zerologon
  ☆11Updated 3 years ago
• adulau / passive-dns-atlas
  Passive DNS collection (and statistics) from RIPE Atlas Sensors
  ☆19Updated 8 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated last year
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆18Updated 6 years ago
• CiscoDevNet / MUD-Manager
  Manufacturer Usage Description (MUD) is a technique whereby constrained end devices (e.g., IoT devices) can signal to the network what so…
  ☆23Updated 4 years ago
• voxpupuli / puppet-misp
  This module installs and configures MISP (Malware Information Sharing Platform)
  ☆13Updated 2 weeks ago
• OTRF / openhunt
  ☆35Updated 4 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• adulau / pdns-qof-server
  Passive DNS server interface compliant to "Common Output Format"
  ☆10Updated 9 years ago
• CyberSift / OSQUERY-PACKS
  Osquery Packs we use for customer security hardening
  ☆12Updated 3 months ago
• cert-ee / s4a
  S4A main repository. SaltStack states, install script and build scripts
  ☆27Updated 3 weeks ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 5 years ago
• clong / vagrant-ids
  An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk
  ☆23Updated 7 years ago
• Alir3z4 / ansible-suricata
  An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.
  ☆17Updated 3 years ago
• regit / opensvp
  Opensvp is a security tool implementing "attacks" to be able to test the resistance of firewall to protocol level attack.
  ☆48Updated 8 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆23Updated 9 years ago
• ccdcoe / frankenstack
  Busted. With duct tape, spit and tears. Brought to you by beer.
  ☆12Updated 3 years ago