m-chrome / py-suricataparserLinks
Pure python parser for Snort/Suricata rules.
☆33Updated last year
Alternatives and similar repositories for py-suricataparser
Users that are interested in py-suricataparser are comparing it to the libraries listed below
Sorting:
- Suricata rule and intel index☆33Updated last month
- pyJARM is a library for doing JARM fingerprinting using python☆50Updated 8 months ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆84Updated this week
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆29Updated 2 years ago
- ☆42Updated 3 years ago
- YaraScanner is a file pattern-matching tool based on YARA rules.☆59Updated 2 years ago
- YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…☆26Updated 3 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆38Updated 3 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆159Updated 8 months ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 5 years ago
- Tracking APT IOCs☆25Updated 5 years ago
- All necessary code in order to feed Sysmon data into Recurrent Neural Network☆17Updated 5 years ago
- Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.☆143Updated 2 months ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆75Updated 3 years ago
- Open source endpoint agent providing host information to Zeek. [v2]☆90Updated 2 weeks ago
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆40Updated 10 months ago
- ☆45Updated 3 years ago
- Look into EDR events from network☆25Updated 3 weeks ago
- Import Mitre Att&ck into Neo4j database☆38Updated 3 years ago
- DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic☆45Updated last year
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆92Updated 7 months ago
- The Security Analyst’s Guide to Suricata☆60Updated 7 months ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- Repository of Yara rules created by the Stratosphere team☆28Updated 4 years ago
- Yara station is a management portal for Neo23x0-Loki. The mission is to transform the standalone nature of the Loki scanner into a centra…☆36Updated 3 years ago
- Advanced threat detection solution for Linux.☆36Updated 5 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆108Updated 4 years ago
- Quickly generate suricata rules for IOCs☆28Updated 4 years ago
- A Self-Contained Open-Source Cyberattack Experimentation Testbed☆43Updated 6 months ago
- Threat Mapping Catalogue☆18Updated 4 years ago