Alternatives and similar repositories for suricata

Users that are interested in suricata are comparing it to the libraries listed below

• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆191Updated 3 months ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆289Updated 3 months ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆96Updated last year
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆29Updated 2 years ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆121Updated 7 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆118Updated this week
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆182Updated 2 months ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆92Updated 9 months ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆90Updated this week
• alienfault / ossim
  Open Source Security Information and event Management
  ☆107Updated 10 years ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆481Updated last week
• utoni / nDPId
  Tiny nDPI based deep packet inspection daemons / toolkit.
  ☆89Updated last month
• robcowart / synesis_lite_snort
  Snort IDS/IPS log analytics using the Elastic Stack.
  ☆87Updated 4 years ago
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆30Updated 2 years ago
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆85Updated 5 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆172Updated 2 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆512Updated 3 weeks ago
• mosajjal / dnsmonster
  Passive DNS Capture and Monitoring Toolkit
  ☆350Updated this week
• satta / awesome-suricata
  A curated list of awesome things related to Suricata
  ☆217Updated 2 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆57Updated 2 months ago
• Netgate / TNSR_IDS
  IDS using a port mirror, Snort and an alert -> RESTCONF utility
  ☆37Updated last year
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 3 years ago
• FrankHassanabad / suricata-sample-data
  Repository of creating different example suricata data sets
  ☆36Updated 7 years ago
• openargus / argus
  Argus Sensor
  ☆74Updated last week
• StopDDoS / packet-captures
  packet captures of real-world ddos attacks
  ☆166Updated 3 months ago
• digitalbond / Quickdraw-Snort
  Digital Bond's IDS/IPS rules for ICS and ICS protocols.
  ☆150Updated 5 years ago
• google / gonids
  gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…
  ☆191Updated 6 months ago
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆495Updated last week
• StamusNetworks / KTS7
  Kibana 7 Templates for Suricata IDPS Threat Hunting
  ☆43Updated last month
• jasonish / docker-suricata
  A Suricata Docker image.
  ☆313Updated 2 months ago