satta / awesome-suricataLinks
A curated list of awesome things related to Suricata
☆174Updated 3 months ago
Alternatives and similar repositories for awesome-suricata
Users that are interested in awesome-suricata are comparing it to the libraries listed below
Sorting:
- Suricata rules for network anomaly detection☆164Updated last month
- Zeek-Formatted Threat Intelligence Feeds☆367Updated this week
- Open source endpoint agent providing host information to Zeek. [v2]☆82Updated this week
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆408Updated last week
- Standard-Format Threat Intelligence Feeds☆115Updated this week
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆93Updated 3 years ago
- An awesome list of resources on deception-based security with honeypots and honeytokens☆173Updated 5 months ago
- The Security Analyst’s Guide to Suricata☆56Updated last month
- ☆35Updated 4 months ago
- Incident Response - Fast suspicious file finder☆242Updated 3 years ago
- OpenCTI Docker deployment helpers☆183Updated last week
- STIX data representing MITRE ATT&CK☆409Updated last month
- Suricata Verification Tests - Testing Suricata Output☆108Updated this week
- A curated list of awesome things related to TheHive & Cortex☆180Updated 3 years ago
- SIEM Tactics, Techiques, and Procedures☆632Updated this week
- This project is a SIEM with SIRP and Threat Intel, all in one.☆442Updated 6 months ago
- Collection of Jupyter Notebooks by @fr0gger_☆165Updated this week
- Indicators of Compromise☆197Updated this week
- Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…☆171Updated 2 months ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated 10 months ago
- Rules generated from our investigations.☆195Updated this week
- Resources To Learn And Understand SIGMA Rules☆176Updated 2 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆170Updated 2 years ago
- PCAP Samples for Different Post Exploitation Techniques☆361Updated 4 years ago
- Threat Intel Platform for T-POTs☆149Updated last week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆300Updated 2 weeks ago
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆182Updated this week
- Cyber Incident Response Team Playbook Battle Cards☆378Updated last year
- Docker image for MISP☆127Updated last week
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆213Updated last week