Alternatives and similar repositories for flowsynth

Users that are interested in flowsynth are comparing it to the libraries listed below

• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆214Updated 7 years ago
• Cisco-Talos / file2pcap
  ☆174Updated 4 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆106Updated 5 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆103Updated 5 years ago
• JustinAzoff / zeek-pdns
  Passive DNS collection using Zeek
  ☆182Updated 2 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆183Updated 2 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆249Updated last year
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆124Updated 5 years ago
• jasonish / py-idstools
  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
  ☆283Updated 6 months ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆95Updated 4 years ago
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆91Updated 9 months ago
• 401trg / detections
  This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…
  ☆122Updated 4 years ago
• mandiant / ioc_writer
  ☆206Updated 2 years ago
• EmergingThreats / et-luajit-scripts
  ☆75Updated 3 years ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆33Updated 2 months ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆121Updated 7 years ago
• markofu / pcaps
  Public Repository of all Publicly Available Packet Captures that I've used or come across
  ☆182Updated 12 years ago
• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆111Updated 12 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆510Updated last month
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 4 years ago
• harvard-itsecurity / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆177Updated 4 years ago
• zeek / packages
  The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.
  ☆143Updated last week
• Yelp / threat_intel
  Threat Intelligence APIs
  ☆282Updated 2 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• sooshie / bro-scripts
  Various Bro scripts
  ☆96Updated 9 years ago
• hpfeeds / hpfeeds
  Honeynet Project generic authenticated datafeed protocol
  ☆218Updated 2 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆110Updated 7 years ago
• michalpurzynski / bro-gramming
  Bro IDS programs collection.
  ☆146Updated 6 years ago
• EmersonElectricCo / fsf
  File Scanning Framework
  ☆295Updated 4 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 5 years ago