Alternatives and similar repositories for argus:

Users that are interested in argus are comparing it to the libraries listed below

• openargus / clients
  Argus clients program repo
  ☆22Updated last week
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆77Updated 5 months ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆105Updated this week
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆69Updated 2 months ago
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆176Updated 6 months ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆54Updated 10 months ago
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆23Updated last year
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆87Updated 11 months ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆79Updated 5 months ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆115Updated 6 years ago
• zeek-flowmeter / zeek-flowmeter
  A Zeek script to generate features based on timing, volume and metadata for traffic classification.
  ☆55Updated 4 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆156Updated 2 weeks ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆76Updated 7 months ago
• thongsia / Public-Pcaps
  ☆49Updated 6 years ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆34Updated 11 months ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆166Updated 3 weeks ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆153Updated this week
• zeek / zeek-training
  Zeek Training Materials/Products
  ☆37Updated last month
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆266Updated 3 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 2 weeks ago
• shramos / pcap-splitter
  Pcap-splitter allows you to split a pcap file into subsets of pcap files based on sessions, flows, ip addresses, number of bytes, number …
  ☆65Updated 5 years ago
• StamusNetworks / suricata-analytics
  ☆33Updated 2 months ago
• nprint / nprint
  nPrint provides a generalizable data representation for network packets that works directly with machine learning techniques
  ☆109Updated 2 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆29Updated last year
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆358Updated this week
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆103Updated 8 months ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• opencybersecurityalliance / oca-iob
  Augmentation to Machine Readable CTI
  ☆30Updated 3 weeks ago
• center-for-threat-informed-defense / sensor-mappings-to-attack
  Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…
  ☆49Updated last week
• tklab-tud / ID2T
  Official ID2T repository. ID2T creates labeled IT network datasets that contain user defined synthetic attacks.
  ☆62Updated last year