Alternatives and similar repositories for gommunityid:

Users that are interested in gommunityid are comparing it to the libraries listed below

• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• ccdcoe / go-peek
  Simple streaming pre-processor and enrichment tool for structured logs.
  ☆12Updated 2 years ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆68Updated 9 months ago
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆27Updated 7 years ago
• rhaist / surevego
  suricata eve.json parser in Go
  ☆14Updated 5 years ago
• micrictor / smbfp
  Zeek package to generate a SMB client fingerprint
  ☆27Updated 4 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆31Updated 2 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆51Updated 8 months ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• kung-foo / freki
  Freki is a tool to manipulate packets in usermode using NFQUEUE and golang.
  ☆58Updated 2 years ago
• EmergingThreats / log4shell-detection
  ☆12Updated 3 years ago
• DCSO / slinkwatch
  automatic enumeration and maintenance of Suricata monitoring interfaces
  ☆11Updated 5 years ago
• 0x00000013 / huakiwi
  eBPF-based EDR for Linux
  ☆16Updated 6 months ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆34Updated 2 years ago
• viktb / asnlookup
  CLI and Go package for fast, offline ASN lookups
  ☆17Updated this week
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆37Updated 2 years ago
• freetaxii / libstix2
  APIs for generating STIX 2.1 and TAXII 2.1 messages with Go (Golang)
  ☆52Updated 3 months ago
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆13Updated last year
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 3 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆102Updated 3 years ago
• hdm / jarm-go
  A Go implementation of JARM
  ☆119Updated 2 years ago
• zeek / zeek-agent-framework
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Updated 4 years ago
• jasonish / go-idsrules
  A Go(lang) IDS rule parser
  ☆13Updated 5 years ago
• fatemabw / kyd
  DHCP Fingerprinting
  ☆28Updated 4 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆32Updated 5 months ago
• bro / bro-osquery
  Bro integration with osquery
  ☆15Updated last year
• freetaxii / server
  A cyber threat intelligence server based on TAXII 2 and written in Golang
  ☆30Updated 5 years ago
• imp0rtp3 / js-yara-rules
  Yara rules for malicious javascript files from public repositories or written by me.
  ☆11Updated 3 years ago
• corelight / zeek-quic
  Bro analyzer that detects Google's QUIC protocol
  ☆10Updated 4 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago