satta / awesome-suricataLinks
A curated list of awesome things related to Suricata
☆180Updated 3 months ago
Alternatives and similar repositories for awesome-suricata
Users that are interested in awesome-suricata are comparing it to the libraries listed below
Sorting:
- Zeek-Formatted Threat Intelligence Feeds☆373Updated this week
- Suricata rules for network anomaly detection☆164Updated 2 months ago
- Standard-Format Threat Intelligence Feeds☆117Updated this week
- The Security Analyst’s Guide to Suricata☆56Updated 2 months ago
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆362Updated this week
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- OpenCTI Docker deployment helpers☆186Updated this week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆310Updated 2 weeks ago
- Open source endpoint agent providing host information to Zeek. [v2]☆83Updated 2 weeks ago
- Threat Intel Platform for T-POTs☆153Updated this week
- The Sigma command line interface based on pySigma☆158Updated 2 months ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆155Updated 4 months ago
- Indicators of Compromise☆200Updated this week
- Collection of Jupyter Notebooks by @fr0gger_☆171Updated last week
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆416Updated this week
- A curated list of Awesome Threat Intelligence blogs☆65Updated last year
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated 11 months ago
- ☆35Updated 5 months ago
- A curated list of awesome things related to TheHive & Cortex☆180Updated 3 years ago
- Incident Response - Fast suspicious file finder☆242Updated 3 years ago
- SIEM Tactics, Techiques, and Procedures☆637Updated last week
- Awesome list of keywords and artifacts for Threat Hunting sessions☆583Updated 2 months ago
- A curated list of Awesome Threat Intelligence Blogs☆422Updated last week
- Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…☆176Updated 2 months ago
- A curated list of security card games.☆134Updated 3 weeks ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆151Updated 3 months ago
- Resources To Learn And Understand SIGMA Rules☆177Updated 2 years ago
- ☆55Updated this week
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆184Updated this week
- Suricata rules that can detect a wide range of threats, including malware, exploits, and other malicious activity especially web applicat…☆46Updated last year