quadrantsec / meerLinks
Meer is a "spooler" for Suricata / Sagan.
☆30Updated 2 years ago
Alternatives and similar repositories for meer
Users that are interested in meer are comparing it to the libraries listed below
Sorting:
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆53Updated 2 months ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated last year
- Accurate, modular, scalable PCAP manipulation tool written in Go.☆89Updated last year
- Open source endpoint agent providing host information to Zeek. [v2]☆83Updated last week
- Community-based CybergON-powered Suricata rules☆12Updated 2 years ago
- Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.☆23Updated 4 years ago
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆26Updated last year
- Application and service identification rules for Suricata☆18Updated 2 years ago
- Parse Suricata rules☆13Updated last year
- Rule sets for Sagan☆104Updated 4 years ago
- Plugin providing native AF_Packet support for Zeek.☆34Updated last year
- ☆12Updated 5 years ago
- eBPF-based EDR for Linux☆17Updated 10 months ago
- automatic enumeration and maintenance of Suricata monitoring interfaces☆11Updated 5 years ago
- Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))☆31Updated 5 years ago
- Go implementation of the Community ID flow hashing standard☆20Updated 2 months ago
- Suricata RPMs for CentOS/RHEL and Fedora☆19Updated 2 weeks ago
- Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.☆39Updated 5 years ago
- OwlH Master API☆24Updated 2 months ago
- Suricata Extreme Performance Tuning guide - Mark II☆117Updated 7 years ago
- Suricata Verification Tests - Testing Suricata Output☆109Updated this week
- Collect autorun records from running system☆60Updated 3 years ago
- Zeek package for tracking long connections to report them before they have completed.☆30Updated 4 months ago
- The Security Analyst’s Guide to Suricata☆56Updated last month
- Suricata rule and intel index☆31Updated 3 months ago
- A set of zeek scripts providing a module for tracking and correlating abnormal DNS behavior.☆34Updated 5 months ago
- Pure python parser for Snort/Suricata rules.☆33Updated last year
- Plugin providing AF_XDP support for Bro.☆14Updated 4 years ago
- suricata eve.json parser in Go☆15Updated 6 years ago
- Apache Metron☆59Updated 4 years ago