m-chrome / py-suricataparserLinks
Pure python parser for Snort/Suricata rules.
☆33Updated last year
Alternatives and similar repositories for py-suricataparser
Users that are interested in py-suricataparser are comparing it to the libraries listed below
Sorting:
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆72Updated last week
- Suricata rule and intel index☆31Updated 3 months ago
- ☆43Updated 2 years ago
- Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.☆39Updated 5 years ago
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆26Updated last year
- Suricata Verification Tests - Testing Suricata Output☆109Updated this week
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- pyJARM is a library for doing JARM fingerprinting using python☆50Updated 3 months ago
- Look into EDR events from network☆23Updated last month
- ☆38Updated 7 months ago
- DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic☆42Updated 10 months ago
- The Security Analyst’s Guide to Suricata☆56Updated last month
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- ☆41Updated 2 years ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆82Updated 2 months ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- A library and command line tool for extracting indicators of compromise (IOCs) from security reports in PDF, HTML, Word, or text format☆34Updated this week
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated last year
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆39Updated 2 years ago
- ☆55Updated this week
- Parse Suricata rules☆13Updated last year
- This repository contains generated contextual data utilized by pyattck.☆19Updated 3 months ago
- Open source endpoint agent providing host information to Zeek. [v2]☆83Updated last week
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 9 months ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆53Updated 2 months ago
- Community-based CybergON-powered Suricata rules☆12Updated 2 years ago
- Golang Suricata/Snort rules parser and generator☆10Updated last year
- A Self-Contained Open-Source Cyberattack Experimentation Testbed☆41Updated 3 weeks ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago