Alternatives and similar repositories for clients

Users that are interested in clients are comparing it to the libraries listed below

• openargus / argus
  Argus Sensor
  ☆74Updated this week
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆192Updated last year
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆96Updated last year
• fmadio / pcap2json
  High Speed PCAP to JSON conversion utility
  ☆107Updated last year
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆57Updated 2 months ago
• utoni / nDPId
  Tiny nDPI based deep packet inspection daemons / toolkit.
  ☆89Updated last month
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆121Updated 7 years ago
• fmadio / pcap_flow
  calculate flow information from PCAP and extract tcp streams
  ☆71Updated last year
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 5 years ago
• ipv6hitlist / ipv6hitlist.github.io
  Website for IPv6 Hitlist Service with data, software, paper of "Clusters in the Expanse: Understanding and Unbiasing IPv6 Hitlists" IMC'1…
  ☆34Updated last week
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆124Updated 5 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆189Updated 3 months ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆90Updated last month
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆80Updated 2 years ago
• CESNET / Nemea
  System for network traffic analysis and anomaly detection.
  ☆92Updated 6 months ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆33Updated 2 months ago
• Netgate / TNSR_IDS
  IDS using a port mirror, Snort and an alert -> RESTCONF utility
  ☆37Updated last year
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆493Updated last week
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆32Updated last year
• bitkeks / python-netflow-v9-softflowd
  PyPI "netflow" package. NetFlow v9 parser, collector and analyzer implemented in Python 3. Developed and tested with softflowd
  ☆119Updated last year
• google / gonids
  gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…
  ☆191Updated 6 months ago
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆30Updated 2 years ago
• kohler / ipsumdump
  Ipsumdump and other programs for command-line network trace manipulation.
  ☆39Updated last year
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆37Updated 2 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆172Updated 2 years ago
• corelight / json-streaming-logs
  Bro script package to create JSON formatted logs to stream into data analysis systems.
  ☆30Updated last month
• cisco-system-traffic-generator / trex-qt-gui
  ☆23Updated 9 years ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆205Updated 3 years ago
• CESNET / ipfixcol
  IPFIXcol is an implementation of an IPFIX (RFC 7011) collector
  ☆66Updated 5 years ago
• irino / softflowd
  softflowd: A flow-based network traffic analyser capable of Cisco NetFlow data export software.
  ☆203Updated 11 months ago