Alternatives and similar repositories for idsEventGenerator

Users that are interested in idsEventGenerator are comparing it to the libraries listed below

• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• neu5ron / malware-traffic-analysis-pcaps
  malware-traffic-analysis.net PCAPs repository.
  ☆36Updated 8 years ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆94Updated 3 years ago
• corelight / http-stalling-detector
  Detect HTTP stalling attacks like slowloris with Bro
  ☆19Updated 7 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 8 months ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆39Updated last year
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 5 years ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 4 years ago
• corelight / top-dns
  Top DNS Measurement for Bro
  ☆11Updated 4 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆86Updated 6 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• hgascon / security-datasets
  A collection of resources for security data
  ☆41Updated 7 years ago
• jsiwek / zeek-cryptomining
  Detect cryptocurrency mining traffic with Zeek.
  ☆46Updated 4 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆80Updated 9 months ago
• chrisjd20 / Snorpy
  Snorpy is a python script the gives a Gui interface to help those new to snort create rules.
  ☆61Updated 9 months ago
• digitalbond / Quickdraw-Suricata
  A set of ICS IDS rules for use with Suricata.
  ☆50Updated last year
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆78Updated 7 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆109Updated 6 years ago
• rkovar / dns_detection
  Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration
  ☆38Updated 9 years ago
• initconf / scan-NG
  scan-detection policies for bro
  ☆16Updated 4 months ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• fatemabw / bro-scripts
  ☆17Updated 5 years ago
• corelight / conn-burst
  A Bro package to identify connections that are bursting (lots of data and transferring quickly).
  ☆13Updated 4 years ago
• Javierop20 / joy2ja3
  Python tool for converting from joy format to JA3 format SSL/TLS hashes
  ☆11Updated 5 years ago
• andrewg-felinemenace / PCAP-Generation-Tools
  PGT allows you to generate pcaps using python without touching the network in any way. It is dependent upon scapy.
  ☆29Updated 3 years ago