Alternatives and similar repositories for Logprep

Users that are interested in Logprep are comparing it to the libraries listed below

• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 10 months ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆46Updated this week
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆30Updated last week
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated last year
• abhinavbom / clara
  Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets
  ☆31Updated 3 weeks ago
• telekom-security / ewsposter
  collect logs and alerts from 37 honeypots and send it to backed (eg peba, geba), hpfeeds, influxdb or jSON file.
  ☆16Updated 2 weeks ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆36Updated 2 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆51Updated last week
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆16Updated last year
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆15Updated 4 years ago
• Prelude-SIEM / prelude-correlator
  The official Prelude-Correlator GitHub mirror of https://www.prelude-siem.org/projects/prelude-correlator/repository
  ☆10Updated 4 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• ccdcoe / Frankencoding
  You're busted!
  ☆26Updated 5 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated 3 weeks ago
• melicertes / csp
  The Cyber Security Platform MeliCERTes is part of the European Strategy for Cyber Security. MeliCERTes is a network for establishing conf…
  ☆31Updated 3 years ago
• tenzir / zeek-tenzir
  Enables Zeek to communicate with Tenzir
  ☆11Updated last year
• opencybersecurityalliance / documentation
  OCA-wide documentation shared by all sub-projects and repositories
  ☆33Updated 8 months ago
• oasis-open / cti-pattern-matcher
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆44Updated 2 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆81Updated 11 months ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated 2 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• Security-Onion-Solutions / securityonion-image
  ☆48Updated this week
• cudeso / misp-training-environment
  Setting up a training environment for MISP
  ☆12Updated 2 years ago
• stratosphereips / whois-similarity-distance
  This python scripts can calculate the WHOIS Similarity Distance between two given domains.
  ☆29Updated 2 years ago
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 3 years ago
• tenzir / events
  Complementary material to presentations at events
  ☆9Updated 2 years ago