Alternatives and similar repositories for ossim

Users that are interested in ossim are comparing it to the libraries listed below

• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆283Updated last month
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆447Updated last year
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆505Updated last week
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆190Updated 2 months ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆492Updated last year
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆668Updated 3 months ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆177Updated last week
• GACWR / OpenUBA
  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…
  ☆462Updated last year
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆112Updated last year
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆473Updated last week
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆240Updated 4 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆249Updated last year
• wazuh / wazuh-dashboard-plugins
  Plugins for Wazuh Dashboard
  ☆488Updated this week
• Patrowl / PatrowlEngines
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆248Updated last week
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆56Updated last year
• Secure-Compliance-Solutions-LLC / GVM-Docker
  Greenbone Vulnerability Management Docker Image with OpenVAS
  ☆249Updated last year
• dogoncouch / LogESP
  Open Source SIEM (Security Information and Event Management system).
  ☆222Updated 2 years ago
• Patrowl / PatrowlDocs
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆149Updated 3 years ago
• bro / bro
  Mirror of https://github.com/zeek/zeek
  ☆176Updated 2 years ago
• wazuh / wazuh-documentation
  Wazuh - Project documentation
  ☆233Updated this week
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆84Updated 4 years ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆159Updated 8 months ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆447Updated this week
• ezarko / opendlp
  ☆119Updated 11 years ago
• MISP / x_old_misp_docker
  MISP Docker (XME edition)
  ☆283Updated 2 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆117Updated this week
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆171Updated 2 years ago
• correlatedsecurity / Awesome-SOAR
  A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.
  ☆904Updated last year
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆73Updated 5 years ago
• Security-Onion-Solutions / securityonion-docs
  ☆93Updated 2 weeks ago