alienfault / ossim

Related projects ⓘ

Alternatives and complementary repositories for ossim

• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆98Updated 3 years ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 4 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆153Updated 2 months ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆79Updated 3 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆106Updated 6 months ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆99Updated last year
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆51Updated last year
• digitalbond / Quickdraw-Suricata
  A set of ICS IDS rules for use with Suricata.
  ☆46Updated last year
• secureworks / dalton
  Suricata and Snort IDS rule and pcap testing system
  ☆449Updated 2 weeks ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆41Updated 5 years ago
• bro / bro
  Mirror of https://github.com/zeek/zeek
  ☆167Updated last year
• digitalbond / Quickdraw-Snort
  Digital Bond's IDS/IPS rules for ICS and ICS protocols.
  ☆138Updated 4 years ago
• ezarko / opendlp
  ☆99Updated 10 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆102Updated this week
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆20Updated last year
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆76Updated 3 weeks ago
• dogoncouch / LogESP
  Open Source SIEM (Security Information and Event Management system).
  ☆197Updated last year
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆231Updated 3 years ago
• cyware-labs / Threat-Response-Docker
  ☆42Updated last year
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆231Updated 5 months ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆254Updated 4 months ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• lion-gu / ioc-explorer
  Explore Indicators of Compromise Automatically
  ☆94Updated 4 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆164Updated last year
• jeffbryner / MozDef
  MozDef: The Mozilla Defense Platform
  ☆67Updated 4 years ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆192Updated 2 years ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆633Updated 3 weeks ago