Alternatives and similar repositories for nids-rule-library

Users that are interested in nids-rule-library are comparing it to the libraries listed below

• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆181Updated last month
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆118Updated this week
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆90Updated this week
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆84Updated last month
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆45Updated 7 years ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆92Updated 9 months ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆33Updated last year
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆162Updated 10 months ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆33Updated 2 weeks ago
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆40Updated 5 years ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆61Updated 8 months ago
• arvindpj007 / Suricata-Detect-DoS-Attack
  Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.
  ☆42Updated 5 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆73Updated 5 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆108Updated 4 years ago
• cyware-labs / Threat-Response-Docker
  ☆44Updated 3 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆38Updated 3 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆191Updated 3 months ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆33Updated 3 months ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆289Updated 2 months ago
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆85Updated 5 years ago
• seanlinmt / suricata
  OpenWRT Suricata package
  ☆55Updated 7 years ago
• quadrantsec / sagan-rules
  ☆35Updated 3 weeks ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 3 years ago
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆30Updated 2 years ago
• jakewarren / suricata-rule-generator
  Quickly generate suricata rules for IOCs
  ☆28Updated 4 years ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 5 years ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆96Updated last year
• socprime / socprime_sigma
  List of sigma for a variety of threats for multiple log sources.
  ☆13Updated 7 years ago
• Security-Onion-Solutions / securityonion-soc
  ☆61Updated last week
• advanced-threat-research / Ripple-20-Detection-Logic
  Ripple20 Critical Vulnerabilities - Detection Logic and Signatures
  ☆12Updated 4 years ago