Alternatives and similar repositories for ApacheMetronWorkshop:

Users that are interested in ApacheMetronWorkshop are comparing it to the libraries listed below

• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• NVISOsecurity / ee-outliers
  Open-source framework to detect outliers in Elasticsearch events
  ☆208Updated last year
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆69Updated 4 years ago
• TAXIIProject / yeti
  YETI is a TAXII implementation
  ☆46Updated 5 years ago
• Blueliv / logstash-input-blueliv
  Logstash Input plugin by Blueliv
  ☆27Updated last year
• SecurityRiskAdvisors / TALR
  Threat Alert Logic Repository
  ☆92Updated 6 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆114Updated 6 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆102Updated 3 years ago
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• DanielSchwartz1 / SplunkForPCAP
  The PCAP Analyzer for Splunk includes useful Dashboards to analyze network packet capture files from Wireshark or Network Monitor (.pcap)…
  ☆42Updated last year
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• OpenSOC / opensoc-ui
  User interface for OpenSOC
  ☆100Updated 9 years ago
• EmergingThreats / et-luajit-scripts
  ☆76Updated 2 years ago
• rocknsm / rock-dashboards
  Dashboards and loader for ROCK NSM dashboards
  ☆48Updated last year
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆76Updated 2 years ago
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 8 years ago
• MalwareSoup / sysmon2neo4j
  ☆15Updated 7 years ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆100Updated 2 years ago
• grigorescu / bro-scripts
  Contributed Bro Scripts
  ☆30Updated 10 years ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 4 years ago
• zeek / bro-scripts
  Misc. Bro scripts
  ☆63Updated 7 years ago
• rocknsm / docket
  A RESTful API frontend for Stenographer
  ☆55Updated 2 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆100Updated 3 years ago
• TAXIIProject / libtaxii
  A Python library for handling TAXII Messages invoking TAXII Services.
  ☆70Updated 3 years ago
• zeek / zeekctl
  Tool for managing Zeek deployments.
  ☆54Updated last month
• ThreatConnect-Inc / threatconnect-playbooks
  Community driven repository of Playbooks and Apps for ThreatConnect.
  ☆68Updated 2 weeks ago
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆53Updated last year