robcowart / synesis_lite_snort

Related projects ⓘ

Alternatives and complementary repositories for synesis_lite_snort

• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆235Updated 3 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆164Updated last year
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆99Updated last year
• John-Lin / docker-snort
  Snort in Docker for Network Functions Virtualization (NFV)
  ☆106Updated 5 years ago
• Graylog2 / graylog-guide-snort
  How to send structured Snort IDS alert logs into Graylog
  ☆27Updated last year
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆102Updated 3 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆232Updated 5 months ago
• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆25Updated 5 years ago
• StamusNetworks / KTS7
  Kibana 7 Templates for Suricata IDPS Threat Hunting
  ☆39Updated 2 years ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆113Updated 6 years ago
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆107Updated 6 months ago
• StamusNetworks / KTS
  Kibana 4 Templates for Suricata IDPS
  ☆33Updated 8 years ago
• StamusNetworks / KTS5
  Kibana 5 Templates for Suricata IDPS
  ☆43Updated 6 years ago
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆204Updated 6 years ago
• Security-Onion-Solutions / securityonion-docker
  Docker files for Security Onion
  ☆40Updated 3 years ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆255Updated 4 months ago
• pevma / Suricata-Logstash-Templates
  Templates for Kibana/Logstash to use with Suricata IDPS
  ☆80Updated 8 years ago
• Graylog2 / graylog-plugin-threatintel
  Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
  ☆150Updated 8 months ago
• robcowart / synesis_lite_syslog
  Syslog collection with the Elastic Stack.
  ☆31Updated last year
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• jbaggs / anomalous-dns
  A set of zeek scripts providing a module for tracking and correlating abnormal DNS behavior.
  ☆33Updated 6 months ago
• airbus-cyber / graylog-plugin-logging-alert
  Alert notification plugin for Graylog to generate log messages from alerts
  ☆24Updated this week
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 3 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆101Updated 2 years ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• zeek / zeekctl
  Tool for managing Zeek deployments.
  ☆53Updated 3 months ago
• tedsluis / nmap
  scan & visualize subnets
  ☆65Updated 7 years ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆100Updated 5 months ago