alienfault / ossimLinks
Open Source Security Information and event Management
☆95Updated 9 years ago
Alternatives and similar repositories for ossim
Users that are interested in ossim are comparing it to the libraries listed below
Sorting:
- Suricata, Snort and Zeek IDS rule and pcap testing system☆480Updated last month
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆110Updated last year
- Security event correlation engine for ELK stack☆440Updated last year
- Suricata rules for the new critical vulnerabilities☆82Updated 4 years ago
- Suricata rules for network anomaly detection☆164Updated 2 months ago
- ☆109Updated 11 years ago
- Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…☆176Updated 2 months ago
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- Digital Bond's IDS/IPS rules for ICS and ICS protocols.☆145Updated 4 years ago
- Passive Real-time Asset Detection System☆243Updated last year
- zeek-scripts☆44Updated 6 years ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆248Updated last week
- The tool for updating your Suricata rules.☆274Updated 2 weeks ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆148Updated 3 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- Wazuh - Ruleset☆455Updated 9 months ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆82Updated 2 months ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆104Updated 3 years ago
- Open source endpoint agent providing host information to Zeek. [v2]☆83Updated last week
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆459Updated 3 weeks ago
- An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced sec…☆207Updated 2 months ago
- A Zeek log writer plugin that publishes to Kafka.☆48Updated 5 months ago
- Zeek IDS Dockerfile☆101Updated 2 years ago
- ☆43Updated 2 years ago
- A repository for OSSEC rules and decoders☆54Updated last year
- Web app that provides basic navigation and annotation of ATT&CK matrices☆58Updated 5 years ago
- Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions☆102Updated 2 years ago
- A HIDS (host-based intrusion detection system) for verifying the integrity of a system.☆59Updated last week
- a network packet capture compiler☆200Updated 3 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆154Updated 3 months ago