Alternatives and similar repositories for SuricataLog

Users that are interested in SuricataLog are comparing it to the libraries listed below

• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆180Updated last month
• satta / awesome-suricata
  A curated list of awesome things related to Suricata
  ☆212Updated last month
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆92Updated 8 months ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆84Updated last week
• daffainfo / suricata-rules
  Suricata rules that can detect a wide range of threats, including malware, exploits, and other malicious activity especially web applicat…
  ☆59Updated last year
• StamusNetworks / suricata-analytics
  ☆38Updated last month
• thongsia / Public-Pcaps
  ☆65Updated 7 years ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆90Updated last month
• cyware-labs / Threat-Response-Docker
  ☆45Updated 3 years ago
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆29Updated 2 years ago
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆40Updated 5 years ago
• StamusNetworks / KTS7
  Kibana 7 Templates for Suricata IDPS Threat Hunting
  ☆43Updated last week
• pan-unit42 / Wireshark-quizzes
  Packet captures of malicious traffic for analysis using Wireshark
  ☆64Updated 2 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆190Updated 2 months ago
• corelight / threat-hunting-guide
  ☆56Updated 3 years ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆61Updated 8 months ago
• Security-Onion-Solutions / securityonion-soc
  ☆61Updated last week
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆63Updated last month
• t3chn0m4g3 / t-pot-attack-map
  T-Pot Attack Map that follows ES honeypot events within T-Pot and parses IPs, ports and honeypot info to visualize events in real time.
  ☆43Updated 2 weeks ago
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆67Updated last year
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆33Updated last month
• CriticalPathSecurity / Public-Intelligence-Feeds
  Standard-Format Threat Intelligence Feeds
  ☆126Updated this week
• OpenCTI-Platform / client-python
  OpenCTI Python Client
  ☆143Updated last month
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆160Updated 9 months ago
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆112Updated last year
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆87Updated 5 years ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆60Updated 3 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆171Updated 2 years ago
• intelowlproject / GreedyBear
  Threat Intel Platform for T-POTs
  ☆160Updated last week
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆38Updated 3 years ago