Alternatives and similar repositories for argus

Users that are interested in argus are comparing it to the libraries listed below

• openargus / clients
  Argus clients program repo
  ☆22Updated this week
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆80Updated this week
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆81Updated 3 weeks ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆78Updated 9 months ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆56Updated 2 weeks ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆271Updated last month
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆107Updated this week
• cisagov / ICSNPP
  Industrial Control Systems Network Protocol Parsers
  ☆170Updated 2 weeks ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 8 months ago
• ait-aecid / logdata-anomaly-miner
  This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited…
  ☆81Updated 2 weeks ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆162Updated last month
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆178Updated 7 months ago
• mitre / caldera-ot
  MITRE Caldera™ for OT Plugins & Capabilities
  ☆212Updated 5 months ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆88Updated last year
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆117Updated 7 years ago
• zeek-flowmeter / zeek-flowmeter
  A Zeek script to generate features based on timing, volume and metadata for traffic classification.
  ☆55Updated 4 years ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆106Updated this week
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆70Updated this week
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆171Updated last year
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆52Updated last month
• satta / awesome-suricata
  A curated list of awesome things related to Suricata
  ☆171Updated 2 months ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆405Updated this week
• tklab-tud / ID2T
  Official ID2T repository. ID2T creates labeled IT network datasets that contain user defined synthetic attacks.
  ☆63Updated last year
• activecm / rita
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆295Updated this week
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆31Updated last year
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆174Updated last week
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆168Updated last month
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆153Updated last month
• daffainfo / suricata-rules
  Suricata rules that can detect a wide range of threats, including malware, exploits, and other malicious activity especially web applicat…
  ☆45Updated last year
• StamusNetworks / suricata-analytics
  ☆34Updated 3 months ago