Alternatives and similar repositories for ossim:

Users that are interested in ossim are comparing it to the libraries listed below

• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆108Updated 9 months ago
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆80Updated 4 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆155Updated 3 weeks ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆69Updated 4 years ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆43Updated 6 years ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆264Updated 2 months ago
• digitalbond / Quickdraw-Snort
  Digital Bond's IDS/IPS rules for ICS and ICS protocols.
  ☆143Updated 4 years ago
• SeisoLLC / zeek-kafka
  A Zeek log writer plugin that publishes to Kafka.
  ☆46Updated last month
• robcowart / synesis_lite_snort
  Snort IDS/IPS log analytics using the Elastic Stack.
  ☆86Updated 3 years ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆100Updated 2 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆469Updated last month
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆75Updated 3 months ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• cyware-labs / Threat-Response-Docker
  ☆41Updated 2 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆100Updated 3 years ago
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆53Updated last year
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆169Updated last year
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆23Updated last year
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆103Updated this week
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆233Updated 8 months ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆78Updated 4 months ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆164Updated 3 months ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆641Updated 2 months ago
• digitalbond / Quickdraw-Suricata
  A set of ICS IDS rules for use with Suricata.
  ☆49Updated last year
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆32Updated 4 years ago
• jasonish / py-idstools
  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
  ☆281Updated last year
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆238Updated 3 years ago
• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆24Updated 5 years ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆443Updated this week