bammv / sguil
Sguil client for NSM
☆218Updated last year
Alternatives and similar repositories for sguil:
Users that are interested in sguil are comparing it to the libraries listed below
- A Simple QUEry and Report Tool☆142Updated 5 years ago
- a network packet capture compiler☆198Updated 2 years ago
- Sandia Cyber Omni Tracker (SCOT)☆246Updated 4 months ago
- MozDef: The Mozilla Defense Platform☆67Updated 5 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Updated last year
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆109Updated 11 months ago
- File Scanning Framework☆292Updated 3 years ago
- Web service for scanning pcaps with snort☆108Updated 6 years ago
- Tool for managing Zeek deployments.☆54Updated 2 weeks ago
- Passive Real-time Asset Detection System☆235Updated 10 months ago
- Snort + Barnyard2 + Pulledpork → The easy way!☆167Updated 4 years ago
- Pulled Pork for Snort and Suricata rule management (from Google code)☆432Updated 3 years ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆134Updated this week
- Barnyard2 is a dedicated spooler for Snort's unified2 binary output format.☆353Updated 11 months ago
- Suricata Extreme Performance Tuning guide☆207Updated 7 years ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆228Updated 4 years ago
- ☆202Updated last year
- ☆140Updated 10 months ago
- Scirius is a web application for Suricata ruleset management and threat hunting.☆646Updated 3 months ago
- Alienvault ossim☆122Updated last month
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆281Updated last year
- Enterprise Log Search and Archive☆208Updated 6 years ago
- Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases☆153Updated last year
- Snorpy is a python script the gives a Gui interface to help those new to snort create rules.☆61Updated 7 months ago
- A live dashboard for a real-time overview of threat intelligence from MISP instances☆202Updated last year
- Threat Feed Aggregation, Made Easy☆167Updated 4 years ago
- Evolving directions on building the best Open Source Forensics VM☆157Updated 6 years ago
- OSSEC Documentation☆138Updated 2 months ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆453Updated last year
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆123Updated 3 years ago