Alternatives and similar repositories for argus

Users that are interested in argus are comparing it to the libraries listed below

• openargus / clients
  Argus clients program repo
  ☆22Updated 2 weeks ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆83Updated last week
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆179Updated 3 months ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆111Updated this week
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆181Updated 9 months ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆276Updated 2 weeks ago
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆468Updated last month
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆82Updated 2 months ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆483Updated last month
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆82Updated 11 months ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆91Updated last year
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆416Updated last week
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆74Updated 3 weeks ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆56Updated 2 months ago
• thongsia / Public-Pcaps
  ☆57Updated 6 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆165Updated 3 months ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆170Updated 2 years ago
• stratosphereips / StratosphereLinuxIPS
  Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors i…
  ☆807Updated this week
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆108Updated last month
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆176Updated 2 months ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆117Updated 7 years ago
• zeek-flowmeter / zeek-flowmeter
  A Zeek script to generate features based on timing, volume and metadata for traffic classification.
  ☆58Updated 4 years ago
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆374Updated this week
• CESNET / Nemea
  System for network traffic analysis and anomaly detection.
  ☆91Updated last week
• oasis-open / cti-stix-common-objects
  OASIS Cyber Threat Intelligence (CTI) TC: A repository for commonly used STIX objects in order to avoid needless duplication. https://gi…
  ☆93Updated last month
• ExabeamLabs / Content-Library-CIM1
  ☆15Updated last year
• mitre-attack / attack-stix-data
  STIX data representing MITRE ATT&CK
  ☆427Updated 2 months ago
• fmadio / pcap2json
  High Speed PCAP to JSON conversion utility
  ☆104Updated last year
• OpenCTI-Platform / client-python
  OpenCTI Python Client
  ☆138Updated this week
• StopDDoS / packet-captures
  packet captures of real-world ddos attacks
  ☆163Updated last week