Alternatives and similar repositories for ossim

Users that are interested in ossim are comparing it to the libraries listed below

• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆280Updated 3 weeks ago
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆446Updated last year
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆501Updated last month
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆174Updated last week
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆240Updated 4 years ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆666Updated last month
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆248Updated last year
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆112Updated last year
• GACWR / OpenUBA
  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…
  ☆455Updated last year
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆485Updated last year
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆469Updated last week
• dogoncouch / LogESP
  Open Source SIEM (Security Information and Event Management system).
  ☆220Updated 2 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆188Updated 3 weeks ago
• greenbone / gvm-tools
  Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance
  ☆186Updated last week
• Patrowl / PatrowlEngines
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆248Updated last month
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆83Updated 4 years ago
• SeisoLLC / zeek-kafka
  A Zeek log writer plugin that publishes to Kafka.
  ☆51Updated 2 months ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆171Updated 2 years ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆90Updated 6 months ago
• digitalbond / Quickdraw-Snort
  Digital Bond's IDS/IPS rules for ICS and ICS protocols.
  ☆147Updated 5 years ago
• wazuh / wazuh-documentation
  Wazuh - Project documentation
  ☆230Updated this week
• wazuh / wazuh-dashboard-plugins
  Plugins for Wazuh Dashboard
  ☆488Updated this week
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆72Updated 5 years ago
• bro / bro
  Mirror of https://github.com/zeek/zeek
  ☆176Updated 2 years ago
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆56Updated last year
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆115Updated last week
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆158Updated 7 months ago
• Patrowl / PatrowlDocs
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆149Updated 3 years ago
• wazuh / wazuh-api
  Wazuh - RESTful API
  ☆77Updated last year
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆45Updated 6 years ago