Alternatives and similar repositories for auditdBroFramework:

Users that are interested in auditdBroFramework are comparing it to the libraries listed below

• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆28Updated last year
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• zeek / zeek-netcontrol
  Connectors for the Zeek NetControl framework
  ☆19Updated last month
• SekoiaLab / FastIR_Agent
  FastIR Agent is a Windows service to execute FastIR Collector on demand
  ☆14Updated 7 years ago
• fl0x2208 / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 7 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• sethhall / bro-scripts
  Various Bro scripts
  ☆38Updated 10 years ago
• ncsa / bro-simple-scan
  ☆14Updated 11 months ago
• initconf / scan-NG
  scan-detection policies for bro
  ☆16Updated 2 months ago
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated 10 months ago
• hosom / bro-phishing
  Detect Phishing with Bro IDS
  ☆18Updated 8 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆61Updated 11 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 7 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 8 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆21Updated 6 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• 504ensicsLabs / regdecoderlive
  This is a copy of the Registry Decoder Live repository from Google Code
  ☆9Updated 9 years ago
• corelight / top-dns
  Top DNS Measurement for Bro
  ☆11Updated 4 years ago
• RamadhanAmizudin / python-icap-yara
  An ICAP Server with yara scanner for URL and content.
  ☆59Updated 3 months ago
• udishamir / Domain-Analyzer
  Detect malicious domain, Blablablablabla
  ☆26Updated 8 years ago
• sheharbano / Correlation-Framework
  A framework that correlates Bro events
  ☆18Updated 11 years ago
• ikoniaris / kippo2elasticsearch
  Transfer Kippo data to ElasticSearch
  ☆18Updated 9 years ago
• cudeso / censys-certif-crawl
  Crawl certificate information from censys
  ☆8Updated 8 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆37Updated 5 months ago
• 9b / pcap_tools
  Help summarize a PCAP file
  ☆33Updated 13 years ago
• EmergingThreats / cuckoo-1.1
  cuckoo-1.1 fork with suricata/moloch/clamav and other goodies
  ☆23Updated 10 years ago