arkime / arkimeweb

Related projects ⓘ

Alternatives and complementary repositories for arkimeweb

• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆25Updated 5 years ago
• StamusNetworks / KTS7
  Kibana 7 Templates for Suricata IDPS Threat Hunting
  ☆38Updated 2 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated 10 months ago
• Security-Onion-Solutions / securityonion-soc
  ☆46Updated this week
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆29Updated 2 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• NSkelsey / aaalm
  Generate network maps from packet captures
  ☆30Updated 5 years ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• OwlH-net / OwlH-Master
  OwlH Master API
  ☆24Updated 6 months ago
• OTRF / openhunt
  ☆33Updated 3 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆28Updated 4 years ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆25Updated 8 years ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 4 months ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆34Updated last year
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆69Updated 4 months ago
• juaromu / wazuh
  ☆18Updated 3 years ago
• amuehlem / MISP-RPM
  RPM packages for MISP
  ☆34Updated 2 weeks ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆29Updated 3 weeks ago
• CESNET / NERD
  Network Entity Reputation Database
  ☆33Updated this week
• jctello / JCT-Wazuh
  Tools for Wazuh by Juan C. Tello
  ☆14Updated 2 years ago
• ilyaglow / cortex-tgbot
  Threat intelligence Telegram bot based on Cortex engine
  ☆12Updated 5 years ago
• dogoncouch / siemstress
  Very basic CLI SIEM (Security Information and Event Management system).
  ☆35Updated 6 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆50Updated 2 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆122Updated 2 months ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆49Updated last month
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆93Updated 3 years ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆33Updated 7 months ago
• Security-Onion-Solutions / securityonion-docker-hh
  ☆20Updated 4 years ago