Alternatives and similar repositories for docker-snort:

Users that are interested in docker-snort are comparing it to the libraries listed below

• weslambert / securityonion-strelka
  ☆12Updated 5 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• defensivedepth / Sysmon_OSSEC
  OSSEC Decoder & Rulesets for Sysmon Events
  ☆15Updated 9 years ago
• jordisk / TheHive2Sigma
  Python script to automatically create sigma rules from The hive observables
  ☆23Updated 5 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆47Updated 6 years ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆28Updated 7 years ago
• OTRF / openhunt
  ☆33Updated 3 years ago
• corelight / top-dns
  Top DNS Measurement for Bro
  ☆11Updated 4 years ago
• SneakersInc / sniffmypacketsv2
  Next major release of sniffMyPackets - Now with added packet loving
  ☆12Updated 9 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆39Updated last year
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆25Updated 2 years ago
• da667 / dns2snort
  AYY LMAO
  ☆21Updated 8 years ago
• CanTopay / thehive-playbook-creator
  A script to create and assign SOP tasks into the cases
  ☆18Updated 4 years ago
• sans-blue-team / course_indices
  Indices for courses in SANS' Network Security Operations curriculum
  ☆15Updated 8 years ago
• sans-blue-team / sec455-wiki
  ☆29Updated 6 years ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 4 years ago
• micrictor / smbfp
  Zeek package to generate a SMB client fingerprint
  ☆26Updated 4 years ago
• DearBytes / Opensource-Endpoint-Monitoring
  This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.
  ☆34Updated 5 years ago
• anthonykasza / beginner_brogramming
  scripts to help beginners program in Bro
  ☆20Updated 11 years ago
• rshipp / ir-triage-toolkit
  Create an incident response triage toolkit for use with Windows or Linux.
  ☆17Updated 4 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated 11 months ago
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated 11 months ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• ministryofpromise / splunk2resilient
  splunk alert script to create resilient tickets
  ☆10Updated 8 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆29Updated last year
• MISP / threat-actor-intelligence-server
  A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…
  ☆47Updated last year
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago
• richiercyrus / Bro-Scripts
  A series of Bro Scripts created for detection purposes.
  ☆19Updated 8 years ago