Alternatives and similar repositories for auditdBroFramework

Users that are interested in auditdBroFramework are comparing it to the libraries listed below

• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆20Updated 8 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 9 years ago
• hempnall / broyara
  integrating bro into yara
  ☆33Updated 11 years ago
• TAXIIProject / yeti
  YETI is a TAXII implementation
  ☆47Updated 6 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆41Updated 5 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• RamadhanAmizudin / python-icap-yara
  An ICAP Server with yara scanner for URL and content.
  ☆58Updated last year
• thnyheim / misp2bro
  Python script that gets IOC from MISP and converts it into BRO intel files.
  ☆13Updated 9 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• hillar / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch
  ☆61Updated 8 years ago
• vmware-archive / bit9platform
  Bit9 Platform
  ☆20Updated 8 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 8 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆40Updated last year
• hosom / bro-phishing
  Detect Phishing with Bro IDS
  ☆18Updated 9 years ago
• PidgeyL / MISP-Extractor
  Extract information from MISP via the API
  ☆16Updated 9 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 12 years ago
• LiamRandall / BroMalware-Exercise
  ☆85Updated 12 years ago
• mixmodeai / bro_intel_linter
  Bro Intel Feed Linter
  ☆26Updated 6 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 5 years ago
• EmergingThreats / bro
  Bro things..
  ☆15Updated 10 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• wolfpack1 / intel_collection_tools
  ☆22Updated 8 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆36Updated 10 years ago
• da667 / dns2snort
  AYY LMAO
  ☆22Updated 9 years ago
• MITRECND / yaraprocessor
  Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
  ☆98Updated 11 years ago
• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆28Updated 4 years ago
• malware-kitten / bro_scripts
  A collection of bro_scripts and signatures
  ☆27Updated 6 years ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆33Updated 5 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 10 years ago
• bostonlink / cuckooforcanari
  Cuckoo Sandbox Local Maltego Transforms Project
  ☆49Updated 11 years ago