Alternatives and similar repositories for audisp-cef

Users that are interested in audisp-cef are comparing it to the libraries listed below

• mozilla / build-fwunit
  INACTIVE - http://mzl.la/ghe-archive - Unit Tests for your Network -
  ☆44Updated 6 years ago
• ukncsc / stix-cvebuilder
  CVE Builder script that generates STIX formatted Exploit Target objects
  ☆18Updated 8 years ago
• MISP / ansible
  MISP - Ansible installation script
  ☆22Updated 6 years ago
• CIRCL / bgp-ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN).
  ☆109Updated 2 years ago
• EricGershman / auditd-examples
  Collection of Auditd Examples and Presentations
  ☆85Updated 4 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• mricon / wotmate
  Web of trust grapher
  ☆38Updated 3 months ago
• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• PingTrip / broctl-setcap
  Broctl plugin for automatically executing 'setcap' on each node after an install
  ☆13Updated 4 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago
• alphagov / puppet-auditd
  Puppet module for Auditd
  ☆41Updated 4 years ago
• HewlettPackard / reconbf
  Recon system hardening scanner
  ☆47Updated 9 years ago
• cert-ee / s4a
  S4A main repository. SaltStack states, install script and build scripts
  ☆26Updated last week
• thirdeyeintelligence / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 8 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated 11 months ago
• LiamRandall / BroMalware-Exercise
  ☆85Updated 12 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated last year
• corelan / dnshjmon
  dnshjmon is a free tool to monitor public DNS records and report hijacks
  ☆91Updated 11 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 10 years ago
• adulau / passive-dns-atlas
  Passive DNS collection (and statistics) from RIPE Atlas Sensors
  ☆19Updated 8 years ago
• plashchynski / viewssld
  viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…
  ☆73Updated 8 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆18Updated 6 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆47Updated 2 months ago
• ANSSI-FR / tabi
  BGP Hijack Detection
  ☆115Updated 7 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 9 years ago
• sealingtech / EDCOP
  Expandable Defensive Cyber Operations Platform
  ☆43Updated 2 years ago
• tklengyel / honeybrid
  Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…
  ☆31Updated 6 years ago