Alternatives and similar repositories for ossim:

Users that are interested in ossim are comparing it to the libraries listed below

• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆108Updated 8 months ago
• ezarko / opendlp
  ☆99Updated 10 years ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆262Updated last month
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• SeisoLLC / zeek-kafka
  A Zeek log writer plugin that publishes to Kafka.
  ☆46Updated 2 weeks ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆99Updated 3 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆104Updated this week
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆154Updated last month
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆53Updated last year
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆100Updated 2 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆237Updated 3 years ago
• jpalanco / alienvault-ossim
  Alienvault ossim
  ☆119Updated 5 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆160Updated 2 months ago
• pevma / Suricata-Logstash-Templates
  Templates for Kibana/Logstash to use with Suricata IDPS
  ☆80Updated 8 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆167Updated last year
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆72Updated 2 months ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆43Updated 6 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆464Updated last week
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆73Updated 7 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆23Updated last year
• wazuh / wazuh-api
  Wazuh - RESTful API
  ☆71Updated 4 months ago
• ossec / ossec-docs
  OSSEC Documentation
  ☆137Updated last year
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆80Updated 3 years ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆438Updated last week
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆232Updated 7 months ago
• digitalbond / Quickdraw-Snort
  Digital Bond's IDS/IPS rules for ICS and ICS protocols.
  ☆142Updated 4 years ago
• cyware-labs / Threat-Response-Docker
  ☆41Updated 2 years ago