Alternatives and similar repositories for EDCOP-SURICATA

Users that are interested in EDCOP-SURICATA are comparing it to the libraries listed below

• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆56Updated last week
• Scribery / aushape
  A library and a tool for converting audit logs to XML and JSON
  ☆46Updated 7 years ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆94Updated last year
• JustinAzoff / can-i-use-afpacket-fanout
  Validate if afpacket PACKET_FANOUT_HASH is working properly
  ☆25Updated 3 years ago
• danmia / pcapdaemon
  A daemon that subscribes to packet capture requests via pubsub and posts the data to a configurable destination
  ☆32Updated 7 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated last month
• dbeast-co / dbeast-monitor
  Application for the Elastic Stack monitoring
  ☆13Updated last week
• dnstap / dnstap.pb
  flexible, structured event replication format for DNS servers (Protocol Buffers schema)
  ☆26Updated 8 months ago
• google / testimony
  Testimony is a single-machine, multi-process architecture for sharing AF_PACKET data across processes, allowsing packets to be copied fro…
  ☆107Updated 4 years ago
• JustinAzoff / zeek-clickhouse
  ☆13Updated 4 years ago
• fmadio / pcap2json
  High Speed PCAP to JSON conversion utility
  ☆107Updated last year
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆184Updated last year
• juju4 / ansible-zeek
  setup zeek, previously Bro IDS
  ☆18Updated last week
• medvedv / purifier
  ☆41Updated 8 years ago
• mshindo / NetFlow-Generator
  Generate arbitrary NetFlow V5 flow records
  ☆39Updated 8 months ago
• hknutzen / Netspoc
  A network security policy compiler. Netspoc is targeted at environments with a large number of firewalls and admins. Firewall rules are d…
  ☆73Updated last week
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆37Updated 2 years ago
• opendxl / opendxl-environment
  Pre-configured environment that supports the development and running of OpenDXL solutions
  ☆13Updated 4 years ago
• tarsal-oss / kflowd
  Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…
  ☆68Updated 5 months ago
• nerdalert / nflow-generator
  NetFlow Generator for Testing Flow Collection Apps
  ☆122Updated 2 years ago
• dropbox / llama
  Library for testing and measuring network loss and latency between distributed endpoints.
  ☆65Updated 6 years ago
• fdns / dnszeppelin-clickhouse
  A Go binary that send DNS statistics to a clickhouse database
  ☆11Updated 7 years ago
• jasonish / suricata-example-plugins
  ☆14Updated 2 months ago
• tenzir / dockerized-zeek
  Dockerized Zeek
  ☆11Updated last year
• path-network / logstash-codec-sflow
  Logstash codec plugin to decrypt sflow
  ☆34Updated 2 years ago
• datianshi / opensource-gslb
  ☆23Updated 7 years ago
• pierky / bgp-large-communities-playground
  A docker-based lab to play with BGP Large Communities
  ☆71Updated 5 years ago
• dnstap / golang-dnstap
  flexible, structured event replication format for DNS servers (command-line tool and Golang package)
  ☆144Updated last year
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆36Updated 5 months ago
• untangle / ngfw_kernels
  Kernels for Untangle products
  ☆10Updated 2 weeks ago