Alternatives and similar repositories for snortparser

Users that are interested in snortparser are comparing it to the libraries listed below

• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆80Updated 7 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆108Updated 4 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆33Updated last year
• bhdresh / SnortRules
  This is an open source Snort rules repository
  ☆30Updated 3 years ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆45Updated 6 years ago
• activeshadow / go-atomicredteam
  go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…
  ☆49Updated 2 years ago
• 0xrawsec / gene-rules
  ☆42Updated 3 years ago
• DarkenCode / yara-rules
  Repository of yara rules
  ☆46Updated 10 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆73Updated 5 years ago
• jorritfolmer / EDRevals
  Splunk app to compare Endpoint Detection and Response solutions based on MITRE ATT&CK evaluations (APT3, APT29, Carbanak + FIN7, Wizard S…
  ☆19Updated 3 years ago
• ByteSecLabs / ja3-ja3s-combo
  High fidelity JA3 & JA3S combinations for known botnets and alike
  ☆11Updated 6 years ago
• lion-gu / ioc-explorer
  Explore Indicators of Compromise Automatically
  ☆97Updated 5 years ago
• plyara / plyara
  Parse YARA rules and operate over them more easily.
  ☆194Updated 10 months ago
• vmapps / attack2neo
  Import Mitre Att&ck into Neo4j database
  ☆38Updated 3 years ago
• baronpan / SysmonHunter
  An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal
  ☆204Updated 3 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆117Updated last week
• tstillz / webshell-scan
  Simple web shell scanner written in Golang.
  ☆89Updated 6 years ago
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 6 years ago
• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated 8 months ago
• Cisco-Talos / Re2Pcap
  ☆59Updated last year
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆82Updated 4 months ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆31Updated 5 years ago
• OTRF / detection-hackathon-apt29
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆145Updated 5 years ago
• dtrizna / SysmonRNN
  All necessary code in order to feed Sysmon data into Recurrent Neural Network
  ☆17Updated 5 years ago
• brakmic / Sinkholes
  Malware Sinkhole List in various formats
  ☆102Updated 3 years ago
• lprat / static_file_analysis
  Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
  ☆50Updated 2 years ago
• endgameinc / eqllib
  ☆167Updated 4 years ago
• mitre-attack / evals_caldera
  A CALDERA plugin for ATT&CK Evaluations Round 1
  ☆33Updated 2 years ago
• mitre-attack / attack-evals
  ATT&CK Evaluations website (DEPRECATED)
  ☆62Updated 4 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆103Updated 3 years ago