robcowart / synesis_lite_suricataLinks
Suricata IDS/IPS log analytics using the Elastic Stack.
☆239Updated 3 years ago
Alternatives and similar repositories for synesis_lite_suricata
Users that are interested in synesis_lite_suricata are comparing it to the libraries listed below
Sorting:
- Scirius is a web application for Suricata ruleset management and threat hunting.☆654Updated this week
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆461Updated 2 weeks ago
- Snort IDS/IPS log analytics using the Elastic Stack.☆86Updated 3 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆480Updated last month
- The tool for updating your Suricata rules.☆273Updated 2 weeks ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆282Updated last year
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆170Updated 2 years ago
- Wazuh - Ruleset☆450Updated 9 months ago
- Security event correlation engine for ELK stack☆440Updated 11 months ago
- Passive Real-time Asset Detection System☆243Updated last year
- Suricata Extreme Performance Tuning guide☆209Updated 7 years ago
- Suricata rules for network anomaly detection☆164Updated 2 months ago
- Docker based Suricata, Elasticsearch, Logstash, Kibana, Scirius aka SELKS☆183Updated 2 years ago
- Plugins for Wazuh Dashboard☆471Updated this week
- Snort + Barnyard2 + Pulledpork → The easy way!☆167Updated 4 years ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆795Updated 4 years ago
- Zeek IDS Dockerfile☆101Updated 2 years ago
- A Suricata Docker image.☆286Updated 2 weeks ago
- Suricata Extreme Performance Tuning guide - Mark II☆117Updated 7 years ago
- Create actionable data from your Vulnerability Scans☆1,386Updated 2 years ago
- Open Source Security Information and event Management☆94Updated 9 years ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆228Updated 4 years ago
- Web service for scanning pcaps with snort☆109Updated 6 years ago
- SIAC is an enterprise SIEM built on open-source technology.☆114Updated 6 years ago
- Docker files for building Zeek.☆86Updated last year
- A Zeek log writer plugin that publishes to Kafka.☆48Updated 5 months ago
- Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases☆154Updated last year
- a network packet capture compiler☆200Updated 3 years ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆454Updated last year
- Barnyard2 is a dedicated spooler for Snort's unified2 binary output format.☆353Updated last year