Alternatives and similar repositories for idsEventGenerator

Users that are interested in idsEventGenerator are comparing it to the libraries listed below

• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆94Updated 3 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• corelight / http-stalling-detector
  Detect HTTP stalling attacks like slowloris with Bro
  ☆19Updated 7 years ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 4 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• corelight / top-dns
  Top DNS Measurement for Bro
  ☆11Updated 4 years ago
• cert-ee / s4a
  S4A main repository. SaltStack states, install script and build scripts
  ☆26Updated 3 weeks ago
• neu5ron / malware-traffic-analysis-pcaps
  malware-traffic-analysis.net PCAPs repository.
  ☆38Updated 9 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 3 years ago
• ncsa / bro-doctor
  ☆23Updated 5 years ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• corelight / json-streaming-logs
  Bro script package to create JSON formatted logs to stream into data analysis systems.
  ☆28Updated last year
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆170Updated 2 years ago
• initconf / scan-NG
  scan-detection policies for bro
  ☆16Updated 5 months ago
• nccgroup / IP-reputation-snort-rule-generator
  A tool to generate Snort rules based on public IP reputation data
  ☆56Updated 11 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆101Updated 5 years ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆39Updated 2 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆34Updated last year
• jsiwek / zeek-cryptomining
  Detect cryptocurrency mining traffic with Zeek.
  ☆46Updated 4 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• secureworks / flowsynth
  a network packet capture compiler
  ☆200Updated 3 years ago
• DCSO / MISP-dockerized
  ☆33Updated 5 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆104Updated 4 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 9 months ago
• digitalbond / Quickdraw-Suricata
  A set of ICS IDS rules for use with Suricata.
  ☆50Updated last year