satta / awesome-suricataLinks
A curated list of awesome things related to Suricata
☆199Updated 7 months ago
Alternatives and similar repositories for awesome-suricata
Users that are interested in awesome-suricata are comparing it to the libraries listed below
Sorting:
- Standard-Format Threat Intelligence Feeds☆123Updated this week
- Suricata rules for network anomaly detection☆173Updated 5 months ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆433Updated last week
- Indicators of Compromise☆221Updated this week
- Zeek-Formatted Threat Intelligence Feeds☆377Updated last week
- OpenCTI Docker deployment helpers☆206Updated this week
- Open source endpoint agent providing host information to Zeek. [v2]☆86Updated last month
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆95Updated 3 years ago
- This project is a SIEM with SIRP and Threat Intel, all in one.☆462Updated 10 months ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆391Updated 2 weeks ago
- An awesome list of resources on deception-based security with honeypots and honeytokens☆177Updated 9 months ago
- A curated list of Awesome Threat Intelligence Blogs☆452Updated 2 months ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago
- Collection of tool you need to have in your Endpoint Detection and Response arsenal☆107Updated last year
- SIEM Tactics, Techiques, and Procedures☆669Updated this week
- Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…☆188Updated this week
- The Security Analyst’s Guide to Suricata☆59Updated 5 months ago
- Awesome list of keywords and artifacts for Threat Hunting sessions☆607Updated 2 months ago
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆204Updated last week
- Incident Response - Fast suspicious file finder☆244Updated 3 years ago
- A curated list of Awesome Threat Intelligence blogs☆80Updated 2 years ago
- Threat Intel Platform for T-POTs☆159Updated this week
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆163Updated this week
- Threat Hunting queries for various attacks☆239Updated this week
- Welcome to the SEKOIA.IO Community repository!☆164Updated 2 months ago
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆384Updated last week
- A powerful and user-friendly browser extension that streamlines investigations for security professionals.☆404Updated 4 months ago
- Collection of Jupyter Notebooks by @fr0gger_☆178Updated last week
- Import CrowdStrike Threat Intelligence into your instance of MISP☆48Updated 4 months ago
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆714Updated 8 months ago