josevnz / SuricataLog

Related projects ⓘ

Alternatives and complementary repositories for SuricataLog

• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆153Updated 2 months ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆102Updated this week
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆65Updated 3 weeks ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆51Updated 5 months ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆29Updated 3 weeks ago
• regit / suri-stats
  A tools to work on suricata stats.log file.
  ☆28Updated 9 years ago
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆107Updated 6 months ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆63Updated last month
• satta / awesome-suricata
  A curated list of awesome things related to Suricata
  ☆131Updated 4 months ago
• cyware-labs / Threat-Response-Docker
  ☆42Updated last year
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆20Updated last year
• Security-Onion-Solutions / securityonion-soc
  ☆46Updated this week
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆254Updated 4 months ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆164Updated last year
• HKcyberstark / wazuh-ecs
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆27Updated 4 years ago
• bfuzzy1 / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆89Updated last year
• OpenCTI-Platform / docker
  OpenCTI Docker deployment helpers
  ☆159Updated this week
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆74Updated 3 months ago
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆38Updated 4 years ago
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆61Updated 2 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆159Updated this week
• zeek / zeek-docs
  Documentation for Zeek
  ☆50Updated this week
• brimdata / zed-sample-data
  sample input data for zq
  ☆13Updated 2 weeks ago
• quadrantsec / sagan-rules
  ☆27Updated last week
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated last week
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆144Updated 8 months ago
• StamusNetworks / suricata-analytics
  ☆25Updated 3 weeks ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆76Updated 3 weeks ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated last month