Alternatives and similar repositories for rulesets

Users that are interested in rulesets are comparing it to the libraries listed below

• simple-evcorr / sec
  Simple Event Correlator releases
  ☆183Updated 11 months ago
• Scribery / aushape
  A library and a tool for converting audit logs to XML and JSON
  ☆46Updated 7 years ago
• hknutzen / Netspoc
  A network security policy compiler. Netspoc is targeted at environments with a large number of firewalls and admins. Firewall rules are d…
  ☆73Updated this week
• assimilation / assimilation-official
  This is the official main repository for the Assimilation project
  ☆51Updated last year
• beave / sagan
  ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan
  ☆229Updated 4 years ago
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆36Updated 6 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆56Updated 3 weeks ago
• terry-wen / Network-Visualization-Project
  Network visualizer tool built using Processing
  ☆24Updated 4 years ago
• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆47Updated 3 months ago
• OpenSCAP / openscap-daemon
  Manages continuous scans of your infrastructure
  ☆107Updated 3 years ago
• cloudposse-archives / sudosh
  Shell wrapper to run a login shell with `sudo` as the current user for the purpose of audit logging
  ☆95Updated 3 years ago
• greenpau / ndmtk
  Network Discovery and Management Toolkit
  ☆60Updated 5 years ago
• mcholste / elsa
  Enterprise Log Search and Archive
  ☆210Updated 6 years ago
• gdestuynder / audisp-cef
  CEF plugin for audisp (Linux Audit)
  ☆23Updated 9 years ago
• jlmcgraw / networkUtilities
  Some small network-related utilities
  ☆34Updated 9 years ago
• StamusNetworks / KTS5
  Kibana 5 Templates for Suricata IDPS
  ☆43Updated 7 years ago
• RIPE-NCC / tracemon
  TraceMON is a web application for visualising network topology generated by traceroutes reaching one or more targets in a network
  ☆67Updated 2 years ago
• JustinAzoff / netflow-indexer
  A program that uses xapian to index the flat file databases used by nfdump or flow-tools
  ☆36Updated 7 years ago
• squash / sudosh2
  sudosh is an auditing shell filter and can be used as a login shell. Sudosh records all keystrokes and output and can play back the sessi…
  ☆88Updated last year
• CESNET / ipfixcol
  IPFIXcol is an implementation of an IPFIX (RFC 7011) collector
  ☆65Updated 5 years ago
• farsightsec / nmsg
  network message encapsulation library
  ☆30Updated last week
• ytti / router_crypt
  ruby library and executable to (de)crypt various router/switch password (IOS, NXOS, JunOS)
  ☆18Updated 2 years ago
• ANSSI-FR / tabi
  BGP Hijack Detection
  ☆115Updated 7 years ago
• fanf2 / nsnotifyd
  handle DNS NOTIFY messages by running a command
  ☆43Updated 10 months ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆19Updated 2 years ago
• balabit / syslog-ng-patterndb
  ☆55Updated 9 years ago
• AppliedTrust / sweet
  Network device configuration backups and change alerts for the 21st century - inspired by RANCID!
  ☆84Updated 8 years ago
• jlmcgraw / network_configuration_navigator
  Convert an IOS/NXOS/ACE/ASA config file into basic HTML, creating links between commands referencing lists and that list (e.g. access lis…
  ☆14Updated 7 years ago
• path-network / logstash-codec-sflow
  Logstash codec plugin to decrypt sflow
  ☆34Updated 2 years ago