Alternatives and similar repositories for rulesets

Users that are interested in rulesets are comparing it to the libraries listed below

• simple-evcorr / sec
  Simple Event Correlator releases
  ☆182Updated 9 months ago
• Scribery / aushape
  A library and a tool for converting audit logs to XML and JSON
  ☆45Updated 7 years ago
• assimilation / assimilation-official
  This is the official main repository for the Assimilation project
  ☆51Updated last year
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆36Updated 3 months ago
• mcholste / elsa
  Enterprise Log Search and Archive
  ☆209Updated 6 years ago
• beave / sagan
  ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan
  ☆229Updated 4 years ago
• squash / sudosh2
  sudosh is an auditing shell filter and can be used as a login shell. Sudosh records all keystrokes and output and can play back the sessi…
  ☆87Updated last year
• terry-wen / Network-Visualization-Project
  Network visualizer tool built using Processing
  ☆24Updated 4 years ago
• cloudposse-archives / sudosh
  Shell wrapper to run a login shell with `sudo` as the current user for the purpose of audit logging
  ☆96Updated 3 years ago
• StamusNetworks / KTS5
  Kibana 5 Templates for Suricata IDPS
  ☆43Updated 7 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆46Updated 3 weeks ago
• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• omniti-labs / system_monitoring
  Script for system monitoring
  ☆13Updated 12 years ago
• balabit / syslog-ng-patterndb
  ☆55Updated 8 years ago
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆181Updated 10 months ago
• stevegrubb / audit-explorer
  This is an R shiny app that visualizes audit data using many tools all in one app.
  ☆35Updated 4 years ago
• JustinAzoff / netflow-indexer
  A program that uses xapian to index the flat file databases used by nfdump or flow-tools
  ☆36Updated 7 years ago
• frohoff / grepcidr
  from http://www.pc-tools.net/unix/grepcidr/
  ☆90Updated 8 years ago
• OpenSCAP / openscap-daemon
  Manages continuous scans of your infrastructure
  ☆107Updated 3 years ago
• hknutzen / Netspoc
  A network security policy compiler. Netspoc is targeted at environments with a large number of firewalls and admins. Firewall rules are d…
  ☆72Updated last week
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated last year
• d4t4king / lynis-report-converter
  Manageable report from lynis text output, in various formats.
  ☆75Updated 4 months ago
• mgriffin / graphviz_network
  Creating network diagrams with Graphviz
  ☆71Updated 8 years ago
• zrlram / afterglow
  graph visualization tool
  ☆78Updated 9 years ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆54Updated 3 months ago
• DNS-OARC / dsc
  DNS Statistics Collector
  ☆110Updated this week
• alphasoc / nfr
  A lightweight tool to score network traffic and flag anomalies
  ☆123Updated 11 months ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆106Updated last year
• GovReady / easyscap
  A simple (but equivalent) YAML format for writing SCAP tests.
  ☆27Updated 10 years ago
• nbs-system / mapster
  Live events map as a Kibana plugin
  ☆75Updated 7 years ago