shirkdog / pulledporkLinks
Pulled Pork for Snort and Suricata rule management (from Google code)
☆434Updated 3 years ago
Alternatives and similar repositories for pulledpork
Users that are interested in pulledpork are comparing it to the libraries listed below
Sorting:
- Barnyard2 is a dedicated spooler for Snort's unified2 binary output format.☆353Updated last year
- Scirius is a web application for Suricata ruleset management and threat hunting.☆651Updated 2 weeks ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆453Updated last year
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆458Updated last week
- Sguil client for NSM☆218Updated last year
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆281Updated last year
- psad: Intrusion Detection and Log Analysis with iptables☆401Updated last year
- A Suricata based IDS/IPS/NSM distro☆1,536Updated 9 months ago
- The tool for updating your Suricata rules.☆271Updated last month
- A low to medium interaction honeypot.☆468Updated last year
- Suricata, Snort and Zeek IDS rule and pcap testing system☆478Updated last week
- The Correlated CVE Vulnerability And Threat Intelligence Database API☆943Updated 4 years ago
- Suricata Extreme Performance Tuning guide☆209Updated 7 years ago
- Snort + Barnyard2 + Pulledpork → The easy way!☆167Updated 4 years ago
- a network packet capture compiler☆199Updated 3 years ago
- Wazuh - Ruleset☆448Updated 8 months ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆228Updated 4 years ago
- Laika BOSS: Object Scanning System☆745Updated 5 months ago
- Tool to gather Threat Intelligence indicators from publicly available sources☆660Updated 6 years ago
- MozDef: The Mozilla Defense Platform☆68Updated 5 years ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆792Updated 4 years ago
- Passive Real-time Asset Detection System☆238Updated last year
- A network sniffer that logs all DNS server replies for use in a passive DNS setup☆1,696Updated last year
- DEPRECATED - USE v3 (bearded-avenger)☆228Updated 7 years ago
- A tool for deploying and detecting use of Active Directory honeytokens☆507Updated 2 years ago
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆1,043Updated last week
- DPS' Lightweight Investigation Notebook☆430Updated last year
- Modular file scanning/analysis framework☆618Updated 5 years ago
- A Simple QUEry and Report Tool☆142Updated 5 years ago
- Network Security Monitoring on Raspberry Pi type devices☆789Updated 7 years ago