Alternatives and similar repositories for simple-ids

Users that are interested in simple-ids are comparing it to the libraries listed below

• jasonish / suricata-example-plugins
  ☆14Updated last year
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆54Updated 3 months ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆461Updated last month
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆92Updated last year
• davidcoles / vc5
  A horizontally scalable Direct Server Return layer 4 load balancer for Linux using XDP/eBPF
  ☆96Updated this week
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆118Updated 7 years ago
• tarsal-oss / kflowd
  Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…
  ☆65Updated 3 months ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆276Updated 2 weeks ago
• utoni / nDPId
  Tiny nDPI based deep packet inspection daemons / toolkit.
  ☆84Updated last month
• NLnetLabs / XDPeriments
  Example programs fot the Journeying into XDP blogs
  ☆48Updated 2 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆179Updated 3 months ago
• netfoundry / zfw
  An EBPF based IPv4/IPv6 firewall with integrations for OpenZiti Zero-Trust Framework edge-routers and tunnellers
  ☆62Updated last month
• r-caamano / ebpf-tproxy-splicer
  This is a project to develop an ebpf program that uses ebpf tc to redirect ingress ipv4 udp/tcp flows toward specific dynamically created…
  ☆32Updated last year
• sealingtech / EDCOP-SURICATA
  ☆10Updated 5 years ago
• satta / awesome-suricata
  A curated list of awesome things related to Suricata
  ☆181Updated 4 months ago
• r-caamano / zfw
  An ebpf based firewall for openziti edge-routers/tunnelers
  ☆24Updated last year
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆181Updated 9 months ago
• ns1 / xdp-workshop
  Velocity SJC 2019 - DDoS mitigation made easy with XDP and eBPF
  ☆109Updated 6 years ago
• josevnz / SuricataLog
  SuricataLog is a set of tools/ scripts to parse and display Suricata log files (like /var/log/suricata/eve.json)
  ☆23Updated this week
• nateuribe / Wazuh-IRIS-integration
  (Unofficial) Wazuh integration to send alerts to IRIS.
  ☆17Updated 6 months ago
• thereisnotime / Snort-Rules
  Collection of Snort 2/3 rules.
  ☆36Updated 7 years ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆83Updated last week
• mosajjal / dnsmonster
  Passive DNS Capture and Monitoring Toolkit
  ☆333Updated 2 months ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆111Updated this week
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆416Updated last week
• ebpf-networking / tc-nodeport
  POC of K8s Nodeport service using BPF
  ☆12Updated 2 years ago
• jasonish / docker-suricata
  A Suricata Docker image.
  ☆286Updated last week
• greenstatic / openspa
  OpenSPA - An open and extensible Single Packet Authorization (SPA) protocol
  ☆99Updated 2 years ago
• google / gonids
  gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…
  ☆186Updated this week
• StamusNetworks / suricata-analytics
  ☆35Updated 5 months ago