Alternatives and similar repositories for ossim:

Users that are interested in ossim are comparing it to the libraries listed below

• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆156Updated last week
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆44Updated 6 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆166Updated 2 weeks ago
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆109Updated 11 months ago
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆52Updated 6 months ago
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆435Updated 9 months ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆70Updated 4 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆170Updated last year
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆81Updated 4 years ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆266Updated 3 months ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆438Updated 6 months ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆471Updated 2 months ago
• TheHive-Project / Docker-Templates
  Docker configurations for TheHive, Cortex and 3rd party tools
  ☆119Updated 2 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆235Updated 10 months ago
• wazuh / wazuh-api
  Wazuh - RESTful API
  ☆72Updated 6 months ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆100Updated 3 years ago
• MISP / x_old_misp_docker
  MISP Docker (XME edition)
  ☆282Updated last year
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆645Updated 3 months ago
• TheHive-Project / CortexDocs
  Documentation of Cortex
  ☆174Updated last year
• dogoncouch / LogESP
  Open Source SIEM (Security Information and Event Management system).
  ☆208Updated last year
• chrisjd20 / Snorpy
  Snorpy is a python script the gives a Gui interface to help those new to snort create rules.
  ☆61Updated 7 months ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆79Updated 5 months ago
• MISP / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆105Updated last year
• digitalbond / Quickdraw-Snort
  Digital Bond's IDS/IPS rules for ICS and ICS protocols.
  ☆144Updated 4 years ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆91Updated 2 years ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆449Updated 3 weeks ago
• ezarko / opendlp
  ☆102Updated 10 years ago
• oasis-open / cti-stix-common-objects
  OASIS Cyber Threat Intelligence (CTI) TC: A repository for commonly used STIX objects in order to avoid needless duplication. https://gi…
  ☆91Updated this week
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 4 years ago
• Patrowl / PatrowlDocs
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆148Updated 2 years ago