Alternatives and similar repositories for docker-suricata

Users that are interested in docker-suricata are comparing it to the libraries listed below

• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆288Updated 2 months ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆672Updated 3 weeks ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆478Updated last week
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆241Updated 4 years ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆449Updated this week
• StamusNetworks / Clear-NDR-ISO
  A Suricata based NDR distribution
  ☆1,586Updated 4 months ago
• wazuh / wazuh-dashboard-plugins
  Plugins for Wazuh Dashboard
  ☆492Updated this week
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆512Updated last week
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆499Updated last year
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆118Updated this week
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆171Updated 2 years ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 3 years ago
• wazuh / wazuh-docker
  Wazuh - Docker containers
  ☆1,014Updated this week
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆189Updated 3 months ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆181Updated last month
• SeisoLLC / zeek-kafka
  A Zeek log writer plugin that publishes to Kafka.
  ☆52Updated 5 months ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆121Updated 7 years ago
• MISP / x_old_misp_docker
  MISP Docker (XME edition)
  ☆282Updated 2 years ago
• NUKIB / misp
  Docker image for MISP
  ☆136Updated last week
• V1D1AN / S1EM
  This project is a SIEM with SIRP and Threat Intel, all in one.
  ☆460Updated last year
• wazuh / wazuh-documentation
  Wazuh - Project documentation
  ☆237Updated this week
• 3CORESec / testmynids.org
  A website and framework for testing NIDS detection
  ☆311Updated 6 months ago
• stratosphereips / StratosphereLinuxIPS
  Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors i…
  ☆855Updated this week
• GACWR / OpenUBA
  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…
  ☆464Updated last year
• jasonish / py-idstools
  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
  ☆283Updated 6 months ago
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆446Updated last year
• SuperCowPowers / zat
  Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark
  ☆451Updated 2 years ago
• coolacid / docker-misp
  A (nearly) production ready Dockered MISP
  ☆230Updated 2 years ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆94Updated 3 years ago
• OpenCTI-Platform / docker
  OpenCTI Docker deployment helpers
  ☆214Updated last week