alienfault / ossimLinks
Open Source Security Information and event Management
☆100Updated 9 years ago
Alternatives and similar repositories for ossim
Users that are interested in ossim are comparing it to the libraries listed below
Sorting:
- The tool for updating your Suricata rules.☆279Updated last month
- Security event correlation engine for ELK stack☆444Updated last year
- Suricata, Snort and Zeek IDS rule and pcap testing system☆489Updated last month
- Suricata rules for network anomaly detection☆167Updated 4 months ago
- Suricata IDS/IPS log analytics using the Elastic Stack.☆239Updated 4 years ago
- Scirius is a web application for Suricata ruleset management and threat hunting.☆659Updated this week
- A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…☆443Updated last year
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆464Updated 2 weeks ago
- Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…☆186Updated last week
- Passive Real-time Asset Detection System☆246Updated last year
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆112Updated last year
- Suricata rules for the new critical vulnerabilities☆83Updated 4 years ago
- A Zeek log writer plugin that publishes to Kafka.☆51Updated last week
- ☆113Updated 11 years ago
- Wazuh - Ruleset☆471Updated 11 months ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆248Updated last month
- zeek-scripts☆44Updated 6 years ago
- MISP Docker (XME edition)☆282Updated last year
- Mapping NSM rules to MITRE ATT&CK☆71Updated 5 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- Open Source SIEM (Security Information and Event Management system).☆218Updated 2 years ago
- Mirror of https://github.com/zeek/zeek☆176Updated 2 years ago
- Zeek IDS Dockerfile☆101Updated 2 years ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆87Updated 4 months ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆157Updated 5 months ago
- Wazuh - Splunk App☆56Updated 11 months ago
- Suricata Verification Tests - Testing Suricata Output☆113Updated this week
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆282Updated last month
- Snort IDS/IPS log analytics using the Elastic Stack.☆86Updated 4 years ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago