Alternatives and similar repositories for auditdBroFramework

Users that are interested in auditdBroFramework are comparing it to the libraries listed below

• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 9 years ago
• initconf / brocon-15
  brocon-15 scripts
  ☆13Updated 8 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆41Updated 5 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆20Updated 8 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 7 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 5 years ago
• chrisbdaemon / beartrap
  ☆20Updated 9 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• hillar / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch
  ☆61Updated 8 years ago
• hosom / bro-phishing
  Detect Phishing with Bro IDS
  ☆19Updated 8 years ago
• zeek / package-manager
  A package manager for Zeek
  ☆47Updated last week
• hempnall / broyara
  integrating bro into yara
  ☆33Updated 11 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 8 years ago
• clong / vagrant-ids
  An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk
  ☆23Updated 7 years ago
• 9b / pcap_tools
  Help summarize a PCAP file
  ☆33Updated 14 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆40Updated last year
• udishamir / Domain-Analyzer
  Detect malicious domain, Blablablablabla
  ☆26Updated 9 years ago
• averagesecurityguy / blue
  Scripts that are suited for blue teams
  ☆33Updated 9 years ago
• RamadhanAmizudin / python-icap-yara
  An ICAP Server with yara scanner for URL and content.
  ☆58Updated last year
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago
• LiamRandall / BroMalware-Exercise
  ☆85Updated 12 years ago
• rj-chap / NFWorkshop
  Network Forensics Workshop Files
  ☆17Updated 10 years ago
• farsightsec / sie-dns-sensor
  Debian and Red Hat packaging for SIE DNS sensor
  ☆15Updated 2 years ago
• bostonlink / cuckooforcanari
  Cuckoo Sandbox Local Maltego Transforms Project
  ☆49Updated 11 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• adulau / pdns-toolkit
  Passive DNS visualization and Passive DNS server toolkit
  ☆35Updated 13 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆36Updated 10 years ago
• CERT-Bund / misp-warninglists-analyzer
  Checks observables/ioc in TheHive/Cortex against the MISP warningslists
  ☆14Updated 8 years ago
• MITRECND / yaraprocessor
  Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
  ☆98Updated 11 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆28Updated 2 years ago