Alternatives and similar repositories for spigot

Users that are interested in spigot are comparing it to the libraries listed below

• blookot / rsa2elk
  Converts Netwitness log parser configuration to Logstash configuration
  ☆20Updated 4 years ago
• elastic / ecs-mapper
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆54Updated 3 years ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆53Updated last month
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆117Updated 7 years ago
• andrewkroh / beats-playground
  Web UI for testing Elastic Beats processors
  ☆17Updated this week
• path-network / logstash-codec-sflow
  Logstash codec plugin to decrypt sflow
  ☆34Updated last year
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated last year
• JustinAzoff / can-i-use-afpacket-fanout
  Validate if afpacket PACKET_FANOUT_HASH is working properly
  ☆25Updated 3 years ago
• jasonish / suricata-rpms
  Suricata RPMs for CentOS/RHEL and Fedora
  ☆20Updated 3 weeks ago
• elastic / geneve
  ☆13Updated last week
• JustinAzoff / gotm
  Full packet capture with flow cutoff, rotation, and compression
  ☆15Updated 6 years ago
• secureworks / aristotle
  ☆38Updated 7 months ago
• isalgueiro / otilio
  Beat to get SNMP data
  ☆24Updated 7 years ago
• Phillipmartin / gopassivedns
  PassiveDNS in Go
  ☆125Updated 5 years ago
• elastic / elastic-integration-corpus-generator-tool
  Command line tool used for generating events corpus dynamically given a specific integration
  ☆23Updated 4 months ago
• criteo / netprobify
  Network probing tool crafted for datacenters (but not only)
  ☆35Updated last month
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆46Updated 2 months ago
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 4 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated last month
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆30Updated last year
• logstash-plugins / logstash-codec-netflow
  ☆78Updated last year
• CESNET / ipfixcol
  IPFIXcol is an implementation of an IPFIX (RFC 7011) collector
  ☆65Updated 5 years ago
• djcas9 / bro.vim
  bro.vim - A simple plugin for working with the bro scripting languages.
  ☆22Updated 5 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆104Updated 4 years ago
• paihu / netflow_exporter
  ☆34Updated last year
• StamusNetworks / suricata-analytics
  ☆35Updated 4 months ago
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆178Updated 8 months ago
• HKcyberstark / wazuh-ecs
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆27Updated 4 years ago
• nbs-system / mapster
  Live events map as a Kibana plugin
  ☆74Updated 7 years ago