Alternatives and similar repositories for ossim:

Users that are interested in ossim are comparing it to the libraries listed below

• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆109Updated last year
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆270Updated 2 weeks ago
• digitalbond / Quickdraw-Snort
  Digital Bond's IDS/IPS rules for ICS and ICS protocols.
  ☆144Updated 4 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆101Updated 3 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆474Updated 3 months ago
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆54Updated last year
• wazuh / wazuh-api
  Wazuh - RESTful API
  ☆73Updated 7 months ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆160Updated last week
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆44Updated 6 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆106Updated this week
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆650Updated last week
• ezarko / opendlp
  ☆103Updated 10 years ago
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆81Updated 4 years ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆455Updated 2 weeks ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆153Updated 3 weeks ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆80Updated last week
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆237Updated 10 months ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 2 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆109Updated 6 years ago
• Security-Onion-Solutions / securityonion-docs
  ☆88Updated last week
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆170Updated last year
• Patrowl / PatrowlDocs
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆148Updated 3 years ago
• vfeedio / pyvfeed
  Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions
  ☆100Updated last year
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆53Updated 7 months ago
• cyware-labs / Threat-Response-Docker
  ☆43Updated 2 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• jasonish / py-idstools
  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
  ☆281Updated last year
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆238Updated 3 years ago