Alternatives and similar repositories for auditdBroFramework

Users that are interested in auditdBroFramework are comparing it to the libraries listed below

• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 9 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆20Updated 8 years ago
• 9b / pcap_tools
  Help summarize a PCAP file
  ☆33Updated 14 years ago
• LiamRandall / BroMalware-Exercise
  ☆85Updated 12 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• hosom / bro-phishing
  Detect Phishing with Bro IDS
  ☆19Updated 8 years ago
• hillar / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch
  ☆61Updated 8 years ago
• hempnall / broyara
  integrating bro into yara
  ☆33Updated 11 years ago
• danielguerra69 / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆13Updated 8 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 5 years ago
• initconf / brocon-15
  brocon-15 scripts
  ☆13Updated 8 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆41Updated 5 years ago
• chrisbdaemon / beartrap
  ☆20Updated 9 years ago
• udishamir / Domain-Analyzer
  Detect malicious domain, Blablablablabla
  ☆26Updated 8 years ago
• initconf / scan-NG
  scan-detection policies for bro
  ☆16Updated 11 months ago
• aboutsecurity / Audit_Host-Baseline
  A set of Bash scripts that allows you to repeatably collect and compare baseline audit data from Linux and Windows systems
  ☆20Updated 12 years ago
• mandiant / synfulknock
  ☆49Updated 10 years ago
• jusafing / pnaf
  Passive Network Audit Framework
  ☆32Updated 7 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆39Updated last year
• clong / vagrant-ids
  An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk
  ☆23Updated 7 years ago
• fox-it / bro-scripts
  Bro-IDS scripts
  ☆50Updated 9 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 7 years ago
• plashchynski / viewssld
  viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…
  ☆74Updated 8 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆36Updated 9 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 8 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆28Updated last year
• MITRECND / yaraprocessor
  Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
  ☆98Updated 11 years ago
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago