secureworks / flowsynth

Related projects ⓘ

Alternatives and complementary repositories for flowsynth

• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆204Updated 6 years ago
• Cisco-Talos / file2pcap
  ☆168Updated 3 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆452Updated this week
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆113Updated 6 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆102Updated 3 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆184Updated last year
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆124Updated 4 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆99Updated 4 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆91Updated 3 years ago
• JustinAzoff / zeek-pdns
  Passive DNS collection using Zeek
  ☆181Updated last year
• michalpurzynski / bro-gramming
  Bro IDS programs collection.
  ☆146Updated 5 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆232Updated 5 months ago
• ChrisRimondi / VulntoES
  Vulnerability Data in ES
  ☆146Updated 7 years ago
• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆109Updated 11 years ago
• mandiant / ioc_writer
  ☆200Updated last year
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆95Updated 4 years ago
• jasonish / py-idstools
  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
  ☆276Updated last year
• Yelp / threat_intel
  Threat Intelligence APIs
  ☆274Updated last year
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆101Updated 2 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• csirtgadgets / massive-octo-spice
  DEPRECATED - USE v3 (bearded-avenger)
  ☆227Updated 6 years ago
• harvard-itsecurity / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆175Updated 3 years ago
• PUNCH-Cyber / YaraGuardian
  Django web interface for managing Yara rules
  ☆190Updated 6 years ago
• 401trg / detections
  This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…
  ☆120Updated 3 years ago
• Ptr32Void / OSTrICa
  ☆309Updated 7 years ago
• jpalanco / alienvault-ossim
  Alienvault ossim
  ☆119Updated 5 years ago
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆423Updated 10 months ago