m-chrome / py-suricataparserLinks
Pure python parser for Snort/Suricata rules.
☆33Updated last year
Alternatives and similar repositories for py-suricataparser
Users that are interested in py-suricataparser are comparing it to the libraries listed below
Sorting:
- Suricata rule and intel index☆31Updated last month
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆79Updated 2 months ago
- YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…☆24Updated 2 years ago
- pyJARM is a library for doing JARM fingerprinting using python☆50Updated 5 months ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆87Updated 4 months ago
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆28Updated 2 years ago
- DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic☆44Updated last year
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆157Updated 5 months ago
- ☆41Updated 2 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 11 months ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 3 years ago
- The Security Analyst’s Guide to Suricata☆57Updated 4 months ago
- OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…☆42Updated last year
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆36Updated last year
- YaraScanner is a file pattern-matching tool based on YARA rules.☆58Updated 2 years ago
- Open source endpoint agent providing host information to Zeek. [v2]☆85Updated last week
- Look into EDR events from network☆24Updated 3 months ago
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆38Updated 6 months ago
- ☆43Updated 2 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- zeek-scripts☆44Updated 6 years ago
- BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)☆74Updated last year
- Yara rules for malicious javascript files from public repositories or written by me.☆13Updated 3 years ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated last year
- High Interaction Honeypot Solution for Redis protocol☆24Updated 4 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Updated 2 years ago
- Lightweight Python-Based Malware Analysis Pipeline☆35Updated 2 months ago
- ☆19Updated last year
- ☆15Updated 11 months ago