Alternatives and similar repositories for clients

Users that are interested in clients are comparing it to the libraries listed below

• openargus / argus
  Argus Sensor
  ☆64Updated 2 weeks ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆53Updated last month
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆89Updated last year
• fmadio / pcap2json
  High Speed PCAP to JSON conversion utility
  ☆103Updated 11 months ago
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆178Updated 8 months ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆82Updated this week
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 8 months ago
• ccdcoe / go-peek
  Simple streaming pre-processor and enrichment tool for structured logs.
  ☆11Updated 2 years ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆117Updated 7 years ago
• fmadio / pcap_flow
  calculate flow information from PCAP and extract tcp streams
  ☆70Updated 10 months ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 4 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• utoni / nDPId
  Tiny nDPI based deep packet inspection daemons / toolkit.
  ☆83Updated last week
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆34Updated last year
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• felixe / idsEventGenerator
  aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…
  ☆22Updated 6 years ago
• isc-projects / dnsgen
  DNS packet generator
  ☆46Updated 10 months ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆81Updated last month
• DNS-OARC / bad-packets
  Collection of "bad" packets in PCAPs that can be used for testing software
  ☆19Updated 7 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆32Updated last year
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated last year
• fmadio / pcap_merge
  High performance time ordered PCAP merging utility
  ☆23Updated 2 years ago
• ipv6hitlist / ipv6hitlist.github.io
  Website for IPv6 Hitlist Service with data, software, paper of "Clusters in the Expanse: Understanding and Unbiasing IPv6 Hitlists" IMC'1…
  ☆33Updated this week
• CESNET / Nemea
  System for network traffic analysis and anomaly detection.
  ☆91Updated 7 months ago
• IQTLabs / packet_cafe
  A platform built for easy-to-use automated network traffic analysis
  ☆59Updated 2 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆80Updated 10 months ago
• trisulnsm / bitmaul
  A Lua helper library for creating network protocol dissectors
  ☆13Updated 4 years ago