Alternatives and similar repositories for SnortRules

Users that are interested in SnortRules are comparing it to the libraries listed below

• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆104Updated 3 years ago
• mannirulz / BotDAD
  Anomaly detection based on DNS traffic analysis
  ☆53Updated 4 years ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 5 years ago
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆82Updated 4 years ago
• lion-gu / ioc-explorer
  Explore Indicators of Compromise Automatically
  ☆94Updated 5 years ago
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 5 years ago
• jasonish / suricata-trafficid.ARCHIVED
  Application and service identification rules for Suricata
  ☆29Updated 2 years ago
• SamsungLabs / W2E
  This is a project of "Cybersecurity Event Detection with New and Re-emerging Words". (ASIACCS 2020)
  ☆28Updated last year
• GiuseppeLaurenza / dAPTaset
  a database that collects data related to APTs from existing public sources through a semi automatic methodology and produces an exhaustiv…
  ☆15Updated 2 years ago
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆26Updated last year
• Cisco-Talos / Re2Pcap
  ☆54Updated 11 months ago
• xisafe / suricata-rule
  suricata IDS的规则，测试在用的，部分自写的规则视情况放出。
  ☆18Updated 6 years ago
• 0xN3utr0n / Kanis
  Advanced threat detection solution for Linux.
  ☆34Updated 4 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• ByteSecLabs / ja3-ja3s-combo
  High fidelity JA3 & JA3S combinations for known botnets and alike
  ☆11Updated 6 years ago
• hi-KK / ICS-Protocol-Detect-Use-Python
  Using Python script instead of Nmap NSE script to detect ICS protocols[根据nmap nse脚本来编写工控协议识别的python脚本]
  ☆32Updated 4 years ago
• arvindpj007 / Suricata-Detect-DoS-Attack
  Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.
  ☆39Updated 5 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆39Updated 4 years ago
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆78Updated 7 years ago
• mylamour / Oops-Webshell
  Oops, It's funny to detect a webshell. Temporarily not maintained
  ☆18Updated 7 years ago
• armedpot / honeytrap
  Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner
  ☆43Updated 3 years ago
• cyware-labs / Threat-Response-Docker
  ☆43Updated 2 years ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated last year
• 360netlab / DGA
  Suspicious DGA from PDNS and Sandbox.
  ☆185Updated 2 years ago
• threatrack / cti_report_collection
  Repository collecting and automagically processing public threat intelligence reports.
  ☆18Updated 5 years ago
• mrdraper / Packet2Snort
  A Python script that generates Snort IDS rules from network packets
  ☆25Updated 7 years ago
• DarkenCode / yara-rules
  Repository of yara rules
  ☆46Updated 9 years ago
• hardenedlinux / hardenedlinux-zeek-scripts
  ☆37Updated last year
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆43Updated 6 years ago