Alternatives and similar repositories for rulesets

Users that are interested in rulesets are comparing it to the libraries listed below

• simple-evcorr / sec
  Simple Event Correlator releases
  ☆183Updated last year
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆36Updated 8 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆57Updated last month
• terry-wen / Network-Visualization-Project
  Network visualizer tool built using Processing
  ☆24Updated 4 years ago
• Scribery / aushape
  A library and a tool for converting audit logs to XML and JSON
  ☆46Updated 7 years ago
• assimilation / assimilation-official
  This is the official main repository for the Assimilation project
  ☆51Updated last year
• balabit / syslog-ng-patterndb
  ☆55Updated 9 years ago
• DNS-OARC / dsc
  Moved to https://codeberg.org/DNS-OARC/dsc
  ☆110Updated 4 months ago
• gdestuynder / audisp-json
  ☆41Updated 5 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆49Updated this week
• farsightsec / nmsg
  network message encapsulation library
  ☆30Updated 2 months ago
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆192Updated last year
• troglobit / netcalc
  Simplified clone of sipcalc with ipcalc looks
  ☆77Updated last year
• SIDN / entrada
  Entrada - A tool for DNS big data analytics
  ☆50Updated last year
• kgaughan / uwhoisd
  A 'Universal WHOIS' proxy server - you query it, it gives back the correct details
  ☆42Updated last month
• mami-project / pathspider
  Tool for A/B testing of path transparency to certain features in the Internet
  ☆22Updated last year
• cloudposse-archives / sudosh
  Shell wrapper to run a login shell with `sudo` as the current user for the purpose of audit logging
  ☆95Updated 3 years ago
• danmia / pcapdaemon
  A daemon that subscribes to packet capture requests via pubsub and posts the data to a configurable destination
  ☆32Updated 8 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• frohoff / grepcidr
  from http://www.pc-tools.net/unix/grepcidr/
  ☆90Updated 8 years ago
• fanf2 / nsnotifyd
  handle DNS NOTIFY messages by running a command
  ☆44Updated last year
• JustinAzoff / netflow-indexer
  A program that uses xapian to index the flat file databases used by nfdump or flow-tools
  ☆36Updated 7 years ago
• squash / sudosh2
  sudosh is an auditing shell filter and can be used as a login shell. Sudosh records all keystrokes and output and can play back the sessi…
  ☆89Updated last year
• Cisco-Talos / Daemonlogger
  The Official Github Repository of Daemonlogger
  ☆22Updated 4 years ago
• CIRCL / bgp-ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN).
  ☆112Updated 2 years ago
• mcholste / elsa
  Enterprise Log Search and Archive
  ☆210Updated 7 years ago
• path-network / logstash-codec-sflow
  Logstash codec plugin to decrypt sflow
  ☆34Updated 2 years ago
• mgriffin / graphviz_network
  Creating network diagrams with Graphviz
  ☆72Updated 9 years ago
• RIPE-NCC / tracemon
  TraceMON is a web application for visualising network topology generated by traceroutes reaching one or more targets in a network
  ☆67Updated 2 years ago
• omniti-labs / system_monitoring
  Script for system monitoring
  ☆13Updated 13 years ago