quadrantsec / saganLinks
Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather than network packets.
☆178Updated 3 months ago
Alternatives and similar repositories for sagan
Users that are interested in sagan are comparing it to the libraries listed below
Sorting:
- Open source endpoint agent providing host information to Zeek. [v2]☆83Updated last week
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆416Updated this week
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆170Updated 2 years ago
- Suricata rules for network anomaly detection☆164Updated 2 months ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆82Updated 2 months ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- Kibana 7 Templates for Suricata IDPS Threat Hunting☆41Updated 2 years ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago
- ☆31Updated last week
- The Wazuh agent for endpoints.☆77Updated this week
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆155Updated 3 months ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆263Updated 2 years ago
- The tool for updating your Suricata rules.☆276Updated last week
- Suricata Verification Tests - Testing Suricata Output☆110Updated this week
- OpenCTI Docker deployment helpers☆188Updated this week
- Open Source Security Information and event Management☆95Updated 9 years ago
- Passive Real-time Asset Detection System☆243Updated last year
- ☆55Updated this week
- A curated list of awesome things related to Suricata☆180Updated 4 months ago
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆461Updated last month
- Argus Sensor☆67Updated last month
- Security event correlation engine for ELK stack☆440Updated last year
- Suricata Extreme Performance Tuning guide - Mark II☆117Updated 7 years ago
- OwlH Master API☆24Updated 2 months ago
- The Security Analyst’s Guide to Suricata☆56Updated 2 months ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆74Updated 3 weeks ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆54Updated 2 months ago
- Zeek IDS Dockerfile☆101Updated 2 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆111Updated last year