satta / gommunityid

Related projects ⓘ

Alternatives and complementary repositories for gommunityid

• micrictor / smbfp
  Zeek package to generate a SMB client fingerprint
  ☆26Updated 4 years ago
• corelight / zeek-quic
  Bro analyzer that detects Google's QUIC protocol
  ☆10Updated 3 years ago
• 0x00000013 / huakiwi
  eBPF-based EDR for Linux
  ☆15Updated 2 months ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 3 years ago
• fatemabw / kyd
  DHCP Fingerprinting
  ☆27Updated 3 years ago
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆27Updated 7 years ago
• viktb / asnlookup
  CLI and Go package for fast, offline ASN lookups
  ☆14Updated last year
• rhaist / surevego
  suricata eve.json parser in Go
  ☆14Updated 5 years ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 4 months ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆28Updated 4 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• indeedsecurity / carbonbeat
  event shipper for Carbon Black Defense notifications
  ☆10Updated last year
• DCSO / slinkwatch
  automatic enumeration and maintenance of Suricata monitoring interfaces
  ☆11Updated 4 years ago
• freetaxii / server
  A cyber threat intelligence server based on TAXII 2 and written in Golang
  ☆30Updated 5 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 2 months ago
• fireeye / brocapi
  Bro PCAP Processing and Tagging API
  ☆28Updated 7 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆29Updated last month
• 401trg / utilities
  This repository contains tools used by 401trg.
  ☆20Updated 3 years ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆37Updated 2 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆15Updated 3 years ago
• ncsa / bro-simple-scan
  ☆15Updated 7 months ago
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆30Updated 5 months ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆62Updated 10 years ago
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆13Updated 9 months ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated last year
• Velocidex / go-prefetch
  A golang implementation of a prefetch parser.
  ☆19Updated 2 months ago
• OTRF / openhunt
  ☆33Updated 3 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆59Updated 2 years ago