Alternatives and similar repositories for argus:

Users that are interested in argus are comparing it to the libraries listed below

• openargus / clients
  Argus clients program repo
  ☆21Updated this week
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆104Updated this week
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆75Updated 4 months ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆87Updated 9 months ago
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆175Updated 4 months ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆54Updated 8 months ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆67Updated last month
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆75Updated 6 months ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆101Updated 7 months ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆265Updated 2 months ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆155Updated this week
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆51Updated 7 months ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆170Updated last year
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆78Updated 4 months ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆115Updated 6 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆130Updated 5 months ago
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆23Updated last year
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆164Updated 3 months ago
• ait-aecid / logdata-anomaly-miner
  This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited…
  ☆79Updated 3 months ago
• thongsia / Public-Pcaps
  ☆48Updated 6 years ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆37Updated 2 years ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆149Updated 8 months ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆32Updated 5 months ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆93Updated 3 years ago
• satta / awesome-suricata
  A curated list of awesome things related to Suricata
  ☆155Updated last month
• H21lab / tsharkVM
  tshark + ELK analytics virtual machine
  ☆66Updated 3 weeks ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆150Updated 11 months ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆34Updated 10 months ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆29Updated 11 months ago