alienfault / ossim
Open Source Security Information and event Management
☆90Updated 9 years ago
Alternatives and similar repositories for ossim:
Users that are interested in ossim are comparing it to the libraries listed below
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆109Updated last year
- The tool for updating your Suricata rules.☆270Updated 2 weeks ago
- Digital Bond's IDS/IPS rules for ICS and ICS protocols.☆144Updated 4 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆101Updated 3 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆474Updated 3 months ago
- A repository for OSSEC rules and decoders☆54Updated last year
- Wazuh - RESTful API☆73Updated 7 months ago
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- Suricata rules for network anomaly detection☆160Updated last week
- zeek-scripts☆44Updated 6 years ago
- Suricata Verification Tests - Testing Suricata Output☆106Updated this week
- Scirius is a web application for Suricata ruleset management and threat hunting.☆650Updated last week
- ☆103Updated 10 years ago
- Suricata rules for the new critical vulnerabilities☆81Updated 4 years ago
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆455Updated 2 weeks ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆153Updated 3 weeks ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆80Updated last week
- Passive Real-time Asset Detection System☆237Updated 10 months ago
- Zeek IDS Dockerfile☆101Updated 2 years ago
- Apache Metron☆59Updated 4 years ago
- Web service for scanning pcaps with snort☆109Updated 6 years ago
- ☆88Updated last week
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆170Updated last year
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆148Updated 3 years ago
- Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions☆100Updated last year
- Wazuh - Splunk App☆53Updated 7 months ago
- ☆43Updated 2 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆281Updated last year
- Suricata IDS/IPS log analytics using the Elastic Stack.☆238Updated 3 years ago