Alternatives and similar repositories for EDCOP-SURICATA:

Users that are interested in EDCOP-SURICATA are comparing it to the libraries listed below

• dnstap / dnstap.pb
  flexible, structured event replication format for DNS servers (Protocol Buffers schema)
  ☆24Updated 3 months ago
• Scribery / aushape
  A library and a tool for converting audit logs to XML and JSON
  ☆45Updated 7 years ago
• eait-itig / flow-collector
  aggregate IP flow data for storage in a ClickHouse database
  ☆20Updated last month
• plajjan / snabbswitch
  Snabb Switch: Fast open source packet processing
  ☆7Updated 8 years ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆52Updated 3 weeks ago
• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• niclabs / dnszeppelin
  Go library to capture DNS packets
  ☆9Updated 4 years ago
• InternetHealthReport / ashash
  Measuring Internet AS dependency
  ☆12Updated 3 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated 2 weeks ago
• flatcar / torcx
  torcx is a boot-time addon manager for immutable systems
  ☆17Updated 2 weeks ago
• egobillot / calltop
  calltop is a tracing tool. It provides a dynamic real-time view of system calls on Linux. It traces also python, java, php and ruby funct…
  ☆27Updated 3 years ago
• xeraa / auditbeat-in-action
  Demo for Elastic's Auditbeat and SIEM
  ☆24Updated 3 years ago
• FastVPSEestiOu / flood_shield
  Flood Shield is a very fast http flood blocker
  ☆30Updated 10 years ago
• sealingtech / EDCOP
  Expandable Defensive Cyber Operations Platform
  ☆43Updated 2 years ago
• mozilla-services / iprepd
  Centralized IP reputation daemon
  ☆60Updated 6 months ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• farsightsec / nmsg
  network message encapsulation library
  ☆29Updated last week
• LTD-Beget / tcpsecrets
  Linux kernel module to provide access to tcp secrets via /proc/tcp_secrets
  ☆15Updated 4 years ago
• JustinAzoff / can-i-use-afpacket-fanout
  Validate if afpacket PACKET_FANOUT_HASH is working properly
  ☆25Updated 2 years ago
• ncsa / dumbno
  No elephant flows - flow shunting for Arista switches using EOS API
  ☆27Updated 4 years ago
• draios / sysdig-workshop-forensics
  ☆17Updated last year
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆30Updated 3 months ago
• auditNG / auditNG
  ☆11Updated 7 years ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated last year
• ncsa / bro-doctor
  ☆23Updated 5 years ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆88Updated last year
• HowNetWorks / whereabouts
  An HTTP service for mapping IPv4 and IPv6 addresses to cities, countries & continents
  ☆16Updated 6 years ago
• wallarm / sysbindings
  sysctl/sysfs settings on a fly for Kubernetes Cluster. No restarts are required for clusters and nodes.
  ☆20Updated 2 years ago
• samuelesabella / ebpflow
  This repo aims to offer a packet flow tracer based on bpf
  ☆13Updated 5 years ago
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆36Updated 2 weeks ago