jasonish / simple-ids
A very simple way to try Suricata and EveBox
☆14Updated 2 months ago
Alternatives and similar repositories for simple-ids:
Users that are interested in simple-ids are comparing it to the libraries listed below
- ☆14Updated 9 months ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆51Updated last week
- OpenWRT Suricata package☆49Updated 7 years ago
- Suricata Verification Tests - Testing Suricata Output☆106Updated this week
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆455Updated 2 weeks ago
- ☆11Updated 11 months ago
- ☆10Updated 4 years ago
- Collection of Snort 2/3 rules.☆35Updated 6 years ago
- Argus Sensor☆62Updated last month
- Accurate, modular, scalable PCAP manipulation tool written in Go.☆87Updated 11 months ago
- Open source endpoint agent providing host information to Zeek. [v2]☆80Updated this week
- ☆33Updated 3 months ago
- Suricata Extreme Performance Tuning guide - Mark II☆117Updated 7 years ago
- The tool for updating your Suricata rules.☆270Updated 2 weeks ago
- A curated list of awesome things related to Suricata☆166Updated last month
- Tiny nDPI based deep packet inspection daemons / toolkit.☆79Updated this week
- SuricataLog is a set of tools/ scripts to parse and display Suricata log files (like /var/log/suricata/eve.json)☆23Updated 3 weeks ago
- Plugin providing native AF_Packet support for Zeek.☆34Updated last year
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆24Updated last year
- Docker files for building Zeek.☆86Updated last year
- Zeek support for Community ID flow hashing.☆35Updated last year
- A tools to work on suricata stats.log file.☆28Updated 9 years ago
- gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…☆185Updated 2 years ago
- Passive Real-time Asset Detection System☆237Updated 10 months ago
- Meer is a "spooler" for Suricata / Sagan.☆29Updated last year
- Web service for scanning pcaps with snort☆109Updated 6 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆104Updated 10 months ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated this week
- ☆13Updated 2 months ago
- A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to …☆107Updated 3 weeks ago