jakewarren / suricata-rule-generatorLinks
Quickly generate suricata rules for IOCs
☆28Updated 4 years ago
Alternatives and similar repositories for suricata-rule-generator
Users that are interested in suricata-rule-generator are comparing it to the libraries listed below
Sorting:
- ☆35Updated last year
- Collection of Suricata rule sets that I use modified to my environments.☆40Updated 5 years ago
- Suricata rule and intel index☆32Updated 2 weeks ago
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- ☆43Updated 2 years ago
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆111Updated last year
- collector/runner☆65Updated 3 weeks ago
- Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))☆31Updated 5 years ago
- A lightweight tool to score network traffic and flag anomalies☆123Updated last year
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆159Updated 6 months ago
- A Yara Lua output script for Suricata☆20Updated 6 years ago
- Simple web shell scanner written in Golang.☆89Updated 6 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆37Updated 3 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆107Updated 4 years ago
- Suricata rules for the new critical vulnerabilities☆83Updated 4 years ago
- Scripts to detect Fast-Flux and DGA using DNS query responses☆43Updated 8 years ago
- Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…☆141Updated 7 months ago
- Suricata rules for network anomaly detection☆172Updated 5 months ago
- Suricata LUA scripts to detect CVE-2019-12255, CVE-2019-12256, CVE-2019-12258, and CVE-2019-12260☆19Updated 5 years ago
- A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.☆31Updated 8 years ago
- A Zeek package for the passive detection of "Ripple20" vulnerabilities in the Treck TCP/IP stack.☆33Updated 3 years ago
- The Fastest way to consume Threat Intel☆26Updated 3 years ago
- This is a threat intelligence automatic crawling tool that also contains some high-value threat intelligence.☆21Updated 4 years ago
- suricata rules to pcap☆10Updated 4 years ago
- A repository for OSSEC rules and decoders☆55Updated 2 years ago
- Globally distributed honeypots and HoneyNets IOCs and file reversing☆16Updated last year
- Add POST body excerpt to Bro's HTTP log☆14Updated last year
- Recog-Go: Pattern Recognition using Rapid7 Recog☆116Updated 2 years ago
- Snorpy is a python script the gives a Gui interface to help those new to snort create rules.☆63Updated last year
- Bro integration with osquery☆15Updated 2 years ago