brimdata / brimcapLinks
Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
☆90Updated 5 months ago
Alternatives and similar repositories for brimcap
Users that are interested in brimcap are comparing it to the libraries listed below
Sorting:
- Open source endpoint agent providing host information to Zeek. [v2]☆86Updated last month
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆158Updated 6 months ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆79Updated last week
- Suricata rules for network anomaly detection☆173Updated last week
- simple YARA-based IOC scanner☆169Updated 2 weeks ago
- ☆44Updated 2 years ago
- MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.☆66Updated last year
- Suricata Verification Tests - Testing Suricata Output☆115Updated this week
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆37Updated 3 years ago
- Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …☆165Updated last year
- Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…☆141Updated 8 months ago
- IoT and Operational Technology Honeypot☆104Updated 2 years ago
- ☆60Updated this week
- zeek-scripts☆45Updated 6 years ago
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆28Updated 2 years ago
- Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…☆188Updated 2 weeks ago
- BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)☆75Updated 3 weeks ago
- Suricata rule and intel index☆32Updated last month
- ☆56Updated 6 years ago
- Incident Response - Fast suspicious file finder☆244Updated 3 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated last year
- Cisco Orbital - Osquery queries by Talos☆135Updated last year
- ☆54Updated last year
- A MITRE Caldera plugin☆46Updated 2 weeks ago
- Look into EDR events from network☆24Updated 5 months ago
- The Security Analyst’s Guide to Suricata☆59Updated 5 months ago
- YaraScanner is a file pattern-matching tool based on YARA rules.☆59Updated 2 years ago
- Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.☆140Updated last month
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆37Updated last month
- A honeypot for the Log4Shell vulnerability (CVE-2021-44228).☆91Updated 10 months ago