ncsa/ossec-tools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ncsa/ossec-tools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ncsa/ossec-tools)

Close

ncsa / ossec-toolsView on GitHubMore

• External links
• Readme badge

Scripts and integrations for OSSEC

☆41Mar 18, 2016Updated 10 years ago

Alternatives and similar repositories for ossec-tools

Users that are interested in ossec-tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• hillar / CDMCS

  View on GitHub
  Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch
  ☆61Feb 20, 2017Updated 9 years ago
• 3CORESec / AWS-Mirror-Toolkit

  View on GitHub
  A set of tools and procedures for automating NSM and NIDS deployments in AWS
  ☆15Oct 16, 2020Updated 5 years ago
• anthonykasza / beginner_brogramming

  View on GitHub
  scripts to help beginners program in Bro
  ☆21Aug 10, 2013Updated 12 years ago
• jonschipp / mal-dnssearch

  View on GitHub
  Compare multiple log formats against malware reputation lists.
  ☆88Jul 27, 2017Updated 8 years ago
• libresec / duo-log-grabber

  View on GitHub
  Grabs the administrator and authentication logs from the Duo Security API and sends CEF-formatted syslog.
  ☆27Aug 22, 2016Updated 9 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mixmodeai / bro_intel_linter

  View on GitHub
  Bro Intel Feed Linter
  ☆26Aug 30, 2019Updated 6 years ago
• dsvetlov / lightsiem

  View on GitHub
  Lightweight and sexy Security Information and Event Managment system for OSSEC, Snort and other IDS/IPS
  ☆111Mar 12, 2021Updated 5 years ago
• theflakes / fmd

  View on GitHub
  Windows file metadata / forensic tool.
  ☆20Oct 12, 2025Updated 7 months ago
• crashdump / logstash-elasticsearch-scripts

  View on GitHub
  Management scripts for Logstash over ES
  ☆50Aug 16, 2021Updated 4 years ago
• BreakingMalwareResearch / YetiToElastic

  View on GitHub
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Jan 6, 2021Updated 5 years ago
• open-nsm / ContainNSM

  View on GitHub
  Dockerfiles for NSM tools
  ☆84Apr 14, 2017Updated 9 years ago
• micrictor / spl-spt

  View on GitHub
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Apr 21, 2020Updated 6 years ago
• jvehent / AutOssec

  View on GitHub
  Ossec cookbook for Chef, with secure & automated key management
  ☆21Jun 13, 2013Updated 12 years ago
• DefensiveOrigins / APT-Lab-FastOpticsSetup

  View on GitHub
  Scripts to threat optics stack quickly / abbreviated and automated. Run after APT-Lab-Terraform
  ☆13Oct 24, 2020Updated 5 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• dcid / ossec-hids

  View on GitHub
  OSSEC HIDS - Sucuri Fork
  ☆11Feb 12, 2021Updated 5 years ago
• neu5ron / dnssinkholelist

  View on GitHub
  dnssinkholelist is a python package focused on combining open source lists of malicious domains, dynamic dns domains, and advertisement d…
  ☆18Apr 13, 2016Updated 10 years ago
• johestephan / VerySimpleHoneypot

  View on GitHub
  Fetch all Honeypot
  ☆12Oct 3, 2018Updated 7 years ago
• micrictor / smbfp

  View on GitHub
  Zeek package to generate a SMB client fingerprint
  ☆27May 5, 2020Updated 6 years ago
• GDSSecurity / JSSE_Fortify_SCA_Rules

  View on GitHub
  Custom Fortify SCA rules to detect common JSSE certification validation flaws
  ☆11Nov 18, 2015Updated 10 years ago
• jonschipp / bro-scripts

  View on GitHub
  A collection of Bro scripts I've written
  ☆41Jun 5, 2015Updated 10 years ago
• amuehlem / MISP-RPM

  View on GitHub
  RPM packages for MISP
  ☆40Apr 29, 2026Updated 3 weeks ago
• BinaryDefense / auto-ossec

  View on GitHub
  ☆142May 24, 2024Updated 2 years ago
• sheharbano / Correlation-Framework

  View on GitHub
  A framework that correlates Bro events
  ☆18Oct 25, 2013Updated 12 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• 0xl3x1 / zeek-EternalSafety

  View on GitHub
  Zeek package for detecting the Eternal* exploits and a set of SMBv1 protocol violations.
  ☆19Aug 21, 2025Updated 9 months ago
• averagesecurityguy / Phishing

  View on GitHub
  Scripts used for phishing campaigns
  ☆14Aug 18, 2014Updated 11 years ago
• carbonblack / cbfeeds

  View on GitHub
  Carbon Black Feeds
  ☆73Apr 4, 2023Updated 3 years ago
• stockrt / netactuator

  View on GitHub
  netactuator is an active network management tool, for graphing individual host activities and make individual host behavior patterns.
  ☆16Jul 17, 2011Updated 14 years ago
• aboutsecurity / Audit_Host-Baseline

  View on GitHub
  A set of Bash scripts that allows you to repeatably collect and compare baseline audit data from Linux and Windows systems
  ☆20Oct 19, 2013Updated 12 years ago
• ADEOSec / sedef

  View on GitHub
  Subdomain Finder Application has 2 tools and 4 web services. With these we are finding the subdomains of the domain.
  ☆11Dec 16, 2016Updated 9 years ago
• articulate / aws-iam-ssh-auth

  View on GitHub
  Auth users connecting via SSH with IAM
  ☆20Nov 1, 2019Updated 6 years ago
• defensivedepth / Pertinax

  View on GitHub
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Feb 20, 2024Updated 2 years ago
• zeek / zeek-agent

  View on GitHub
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆124Nov 19, 2020Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• sethhall / bro-scripts

  View on GitHub
  Various Bro scripts
  ☆37May 20, 2014Updated 12 years ago
• grigorescu / bro-scripts

  View on GitHub
  Contributed Bro Scripts
  ☆30May 28, 2014Updated 11 years ago
• csirtgadgets / massive-octo-spice

  View on GitHub
  DEPRECATED - USE v3 (bearded-avenger)
  ☆230Jan 16, 2018Updated 8 years ago
• projectatomic / nulecule-library

  View on GitHub
  A set of nulecule-ized applications that can be used for reference or as part of your applications
  ☆26Oct 21, 2016Updated 9 years ago
• PingTrip / broctl-setcap

  View on GitHub
  Broctl plugin for automatically executing 'setcap' on each node after an install
  ☆13Dec 18, 2020Updated 5 years ago
• pwnlandia / hpfeeds-logger

  View on GitHub
  Small App for reading from MHN's hpfeeds broker and writing splunk logs
  ☆10Sep 30, 2019Updated 6 years ago
• herbie4 / mainwp-check-plugins-vulnerability-extension

  View on GitHub
  Extension for MainWP Dashboard. Checks the child websites plugins for vulnerability using the WordFence intelligence api.
  ☆11Updated this week