Alternatives and similar repositories for simple-ids:

Users that are interested in simple-ids are comparing it to the libraries listed below

• jasonish / suricata-example-plugins
  ☆14Updated 8 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 2 weeks ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆452Updated last week
• regit / suri-stats
  A tools to work on suricata stats.log file.
  ☆28Updated 9 years ago
• openargus / argus
  Argus Sensor
  ☆61Updated last week
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆115Updated 6 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆105Updated this week
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆87Updated 11 months ago
• StamusNetworks / suricata-analytics
  ☆33Updated 2 months ago
• sidallocation / sidallocation.org
  ☆13Updated last month
• satta / awesome-suricata
  A curated list of awesome things related to Suricata
  ☆158Updated 3 weeks ago
• thereisnotime / Snort-Rules
  Collection of Snort 2/3 rules.
  ☆35Updated 6 years ago
• jasonish / docker-suricata
  A Suricata Docker image.
  ☆277Updated last week
• sealingtech / EDCOP-SURICATA
  ☆10Updated 4 years ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆266Updated 3 months ago
• Netgate / TNSR_IDS
  IDS using a port mirror, Snort and an alert -> RESTCONF utility
  ☆36Updated 10 months ago
• openargus / clients
  Argus clients program repo
  ☆22Updated last week
• qjawls2003 / eBPF-Remote-Client-Tracing
  eBPF agent to trace processes back to SSH Client IP
  ☆18Updated last year
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆79Updated 5 months ago
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆29Updated last year
• NachtZ / daq_dpdk
  ☆22Updated 8 years ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆34Updated 11 months ago
• tarsal-oss / kflowd
  Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…
  ☆60Updated this week
• vmware / go-ipfix
  An ipfix library in Go
  ☆43Updated last week
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆392Updated this week
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated 10 months ago
• The-Shadowserver-Foundation / api_utils
  Sample programs to access the API
  ☆80Updated 2 weeks ago
• netfoundry / zfw
  An EBPF based IPv4/IPv6 firewall with integrations for OpenZiti Zero-Trust Framework edge-routers and tunnellers
  ☆50Updated 2 weeks ago
• Asphaltt / iptables-bpf
  An example of iptables-bpf with Go+eBPF
  ☆16Updated 3 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆166Updated this week