satta / gommunityid
Go implementation of the Community ID flow hashing standard
☆20Updated 2 weeks ago
Alternatives and similar repositories for gommunityid:
Users that are interested in gommunityid are comparing it to the libraries listed below
- Zeek package to generate a SMB client fingerprint☆27Updated 5 years ago
- Suricata rule and intel index☆30Updated last month
- Golang based web service to scan files with yara rules☆27Updated 7 years ago
- Simple streaming pre-processor and enrichment tool for structured logs.☆11Updated 2 years ago
- eBPF-based EDR for Linux☆17Updated 8 months ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated 11 months ago
- suricata eve.json parser in Go☆15Updated 5 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Bro analyzer that detects Google's QUIC protocol☆10Updated 4 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 7 months ago
- Collect autorun records from running system☆61Updated 3 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- DHCP Fingerprinting☆28Updated 4 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- ☆14Updated 6 years ago
- ☆10Updated 9 years ago
- Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.☆23Updated 4 years ago
- automatic enumeration and maintenance of Suricata monitoring interfaces☆11Updated 5 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago
- A golang implementation of a prefetch parser.☆19Updated 7 months ago
- Bro integration with osquery☆15Updated 2 years ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆52Updated 2 weeks ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- ☆12Updated 3 years ago
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Updated last month
- event shipper for Carbon Black Defense notifications☆10Updated 2 years ago
- ☆33Updated 4 years ago
- A cyber threat intelligence server based on TAXII 2 and written in Golang☆30Updated 5 years ago
- This repository contains tools used by 401trg.☆20Updated 4 years ago
- ☆24Updated 2 years ago