Alternatives and similar repositories for ossim

Users that are interested in ossim are comparing it to the libraries listed below

• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆276Updated 2 weeks ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆483Updated last month
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆656Updated 3 weeks ago
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆239Updated 3 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆165Updated 3 months ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆461Updated last month
• GACWR / OpenUBA
  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…
  ☆437Updated last year
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆111Updated last year
• dogoncouch / LogESP
  Open Source SIEM (Security Information and Event Management system).
  ☆215Updated last year
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆440Updated last year
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆111Updated this week
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆456Updated 9 months ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆179Updated 3 months ago
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆82Updated 4 years ago
• digitalbond / Quickdraw-Snort
  Digital Bond's IDS/IPS rules for ICS and ICS protocols.
  ☆145Updated 4 years ago
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆55Updated 10 months ago
• wazuh / wazuh-dashboard-plugins
  Plugins for Wazuh Dashboard
  ☆476Updated this week
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆170Updated 2 years ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆44Updated 6 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆243Updated last year
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆104Updated 3 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• ezarko / opendlp
  ☆110Updated 11 years ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 2 years ago
• greenbone / gvm-tools
  Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance
  ☆180Updated this week
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆155Updated 3 months ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆82Updated 2 months ago
• SeisoLLC / zeek-kafka
  A Zeek log writer plugin that publishes to Kafka.
  ☆48Updated 6 months ago
• jasonish / py-idstools
  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
  ☆282Updated last week
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆54Updated last year