Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather than network packets.
☆198Oct 6, 2025Updated 8 months ago
Alternatives and similar repositories for sagan
Users that are interested in sagan are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆37Updated this week
- Meer is a "spooler" for Suricata / Sagan.☆30Jun 21, 2023Updated 3 years ago
- CLI tool for testing Office documents with macros using MaliciousMacroBot☆12Dec 3, 2023Updated 2 years ago
- netbeacon - monitoring your network capture, NIDS or network analysis process☆20Apr 5, 2026Updated 2 months ago
- provides a Suricata Eve output for Kafka with Suricate Eve plugin☆15Nov 25, 2021Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A Networking Packet Capture and Flow Analysis Operator☆16Mar 18, 2022Updated 4 years ago
- The official Prelude SIEM GitHub of https://www.prelude-siem.org☆43Jun 12, 2016Updated 10 years ago
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆494Jun 16, 2026Updated last week
- ☆13Apr 8, 2022Updated 4 years ago
- collector☆64Jun 19, 2026Updated last week
- Minimalistic WebUI for passiveDNS tool☆18May 6, 2021Updated 5 years ago
- Personal scripts☆15Sep 11, 2024Updated last year
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆81Mar 19, 2026Updated 3 months ago
- Snort/Suricata DAQ module with DPDK patch☆11Apr 10, 2024Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- ☆35Jun 22, 2021Updated 5 years ago
- Shell Language Processing (SLP). Pre-processing of sh/bash/zsh/.. commands for Machine Learning models.☆40Nov 26, 2025Updated 7 months ago
- Automatic detection engineering technical state compliance☆55Jul 7, 2024Updated last year
- A systemd-enabled Kali Linux Docker image, in the spirit of geerlingguy/docker-debian11-ansible.☆15Jun 22, 2026Updated last week
- ☆13Feb 25, 2021Updated 5 years ago
- Hakabana monitoring tool using Haka, ElastcSearch and Kibana☆20Sep 24, 2014Updated 11 years ago
- OpenControl Database☆11Jan 5, 2023Updated 3 years ago
- Suricata rule and intel index☆33May 22, 2026Updated last month
- SIEGMA - Transform Sigma rules into SIEM consumables☆160Mar 10, 2025Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- This repo contains implementation of IP2Vec model which is used for learning similarities between IP Addresses☆13Oct 7, 2025Updated 8 months ago
- A Yara Lua output script for Suricata☆20Apr 7, 2019Updated 7 years ago
- ☆18Sep 28, 2023Updated 2 years ago
- A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…☆492Jun 22, 2026Updated last week
- A curated list of awesome things related to Suricata☆237May 16, 2026Updated last month
- Core module for Forgiva Enterprise connecting Forgiva Server to Forgiva Webclient.☆13Mar 28, 2022Updated 4 years ago
- Public rules and samples for various automations through LimaCharlie.io☆14Dec 16, 2021Updated 4 years ago
- Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...☆71Apr 10, 2019Updated 7 years ago
- Tenzir is the data pipeline engine for security teams.☆743Updated this week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Carving tool based in Radare2 & Yara☆16Oct 30, 2018Updated 7 years ago
- The web UI for the OpenRMF tool, which uses multiple containers for parts of the distributed openRMF tool for managing DoD STIG checklist…☆32May 23, 2026Updated last month
- Suricata rules for network anomaly detection☆182May 7, 2026Updated last month
- Passive service locator, a python sniffer that identifies servers, clients, names and much more☆263Feb 9, 2026Updated 4 months ago
- Security event correlation engine for ELK stack☆445Jun 26, 2024Updated 2 years ago
- Real-time, container-based file scanning at enterprise scale☆992Updated this week
- A method for grouping, clustering, and merging semi-structured alerts☆26Nov 15, 2024Updated last year