Alternatives and similar repositories for suricata-graylog

Users that are interested in suricata-graylog are comparing it to the libraries listed below

• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆24Updated 6 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated this week
• OwlH-net / OwlH-UI
  OwlH Master API Web User Interface
  ☆12Updated last year
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 4 years ago
• Graylog2 / graylog-guide-snort
  How to send structured Snort IDS alert logs into Graylog
  ☆27Updated last year
• Homas / ioc2rpz
  ioc2rpz is a place where threat intelligence meets DNS.
  ☆109Updated 4 months ago
• jtschichold / panwdbl
  Simple block lists hub for PAN-OS DBL feature
  ☆35Updated 6 years ago
• siemonster / logstash
  Example configuration files for Logstash
  ☆44Updated 5 years ago
• yvesago / imap-honey
  IMAP or SMTP honeypot written in Golang
  ☆25Updated 3 years ago
• jctello / JCT-Wazuh
  Tools for Wazuh by Juan C. Tello
  ☆14Updated 3 years ago
• StamusNetworks / KTS7
  Kibana 7 Templates for Suricata IDPS Threat Hunting
  ☆40Updated 2 years ago
• juaromu / wazuh-nmap
  ☆17Updated 3 years ago
• OwlH-net / OwlH-Master
  OwlH Master API
  ☆24Updated last month
• OPNids / core
  OPNids GUI, API and systems backend
  ☆34Updated 6 years ago
• Alir3z4 / ansible-suricata
  An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.
  ☆15Updated 3 years ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆104Updated last year
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• HKcyberstark / wazuh-ecs
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆27Updated 4 years ago
• NavyTitanium / DNSMasterChef
  Selective DNS proxy forwarding based on DNS threat blocking providers intelligence.
  ☆57Updated 7 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• Nclose-ZA / elastalert_hive_alerter
  This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.
  ☆27Updated 4 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated last year
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated 7 months ago
• SMAPPER / NXLog-AutoConfig
  ☆49Updated 4 years ago
• SanWieb / sigWah
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆33Updated 4 years ago
• PolitoInc / DNS-ELK
  Experimental DNS logs pipeline based on Pi-hole dnsmasq logs, ELK stack, and Filebeat. Sample configs included.
  ☆30Updated last year
• 0xbad53c / wazuh-detection-rules
  Our collection of Wazuh detection rules for our Offense Lab
  ☆14Updated 3 years ago
• alertflex / altprobe
  collector/runner
  ☆65Updated 2 months ago