satta / suricata-json-schemaLinks
Suricata JSON schema project
☆12Updated 5 years ago
Alternatives and similar repositories for suricata-json-schema
Users that are interested in suricata-json-schema are comparing it to the libraries listed below
Sorting:
- Zeek support for Community ID flow hashing.☆35Updated last year
- Full packet capture with flow cutoff, rotation, and compression☆15Updated 6 years ago
- OASIS OpenC2 TC: Repository for submitting and reviewing OpenC2 use cases relevant to the work of the OpenC2 Language Subcommittee (LSC)☆28Updated 3 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- A Bro package to identify connections that are bursting (lots of data and transferring quickly).☆13Updated 4 years ago
- OASIS TC Open Repository: Match STIX content against STIX patterns☆44Updated 2 years ago
- Complementary material to presentations at events☆9Updated 2 years ago
- A utility repo to assist with converting between MISP and STIX formats☆68Updated 4 years ago
- Extensions for Zeek's Intelligence Framework.☆11Updated 3 years ago
- Specifications used in the MISP project including MISP core format☆51Updated 5 months ago
- Zeek Training Materials/Products☆37Updated last week
- Extracting and analyzing URLs from Emails for phishing events☆21Updated 4 years ago
- OASIS TC Open Repository: STIX Enhancement Proposals (SEPs) https://github.com/oasis-open/cti-sep-repository☆16Updated last year
- Pre-configured environment that supports the development and running of OpenDXL solutions☆13Updated 4 years ago
- Zeek package for tracking long connections to report them before they have completed.☆30Updated 4 months ago
- OASIS TC Open Repository: The repository cti-stix-slider supports development of a Python application to convert STIX 2.0 content to STIX…☆21Updated last year
- OASIS TC Open Repository: Validator for STIX 2.0 JSON normative requirements and best practices☆52Updated 2 months ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Updated 5 years ago
- A Python implementation of the Community ID flow hashing standard☆23Updated last year
- ☆23Updated 5 years ago
- Translate STIX 2 Patterning Queries☆31Updated 6 years ago
- Plugin providing native AF_Packet support for Zeek.☆34Updated last year
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- An OpenTAXII Configuration for MISP☆82Updated 2 years ago
- Enables Zeek to communicate with Tenzir☆11Updated last year
- A Zeek package that detects Zoom logins and meeting joins☆12Updated 5 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 8 months ago
- scan-detection policies for bro☆16Updated 4 months ago
- A completely automated anomaly detector Zeek network flows files (conn.log).☆80Updated 10 months ago
- ☆28Updated 8 years ago