simple-evcorr / rulesets

Related projects ⓘ

Alternatives and complementary repositories for rulesets

• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆35Updated 10 months ago
• simple-evcorr / sec
  Simple Event Correlator releases
  ☆175Updated 2 weeks ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated 6 months ago
• JustinAzoff / netflow-indexer
  A program that uses xapian to index the flat file databases used by nfdump or flow-tools
  ☆36Updated 6 years ago
• terry-wen / Network-Visualization-Project
  Network visualizer tool built using Processing
  ☆24Updated 3 years ago
• assimilation / assimilation-official
  This is the official main repository for the Assimilation project
  ☆51Updated 4 months ago
• gdestuynder / audisp-json
  ☆42Updated 3 years ago
• pentestfail / Bro-KEN
  An engine for Bro IDS using Kibana, ElasticSearch, & NXLOG (KEN)
  ☆10Updated 9 years ago
• Graylog2 / graylog-plugin-cef
  [DEPRECATED] CEF (Common Event Format) input plugin for Graylog
  ☆10Updated 3 years ago
• bulutsal / networkanalysis
  Network Analysis using ElasticSearch and Kibana
  ☆45Updated 7 years ago
• zeek / zeekctl
  Tool for managing Zeek deployments.
  ☆53Updated 3 months ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 4 years ago
• rocknsm / docket
  A RESTful API frontend for Stenographer
  ☆55Updated last year
• zeek / bro-plugins
  (OBSOLETE) Plugins for Bro
  ☆53Updated 7 years ago
• StamusNetworks / KTS5
  Kibana 5 Templates for Suricata IDPS
  ☆43Updated 6 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated 10 months ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 7 years ago
• hillar / vagrant_moloch_bro_suricata
  vagrant multi-machine: Moloch, Bro,Suricata,ElasticSearch,Kibana
  ☆41Updated 9 years ago
• jlmcgraw / network_configuration_navigator
  Convert an IOS/NXOS/ACE/ASA config file into basic HTML, creating links between commands referencing lists and that list (e.g. access lis…
  ☆14Updated 6 years ago
• gdestuynder / audisp-cef
  CEF plugin for audisp (Linux Audit)
  ☆23Updated 8 years ago
• danmia / pcapdaemon
  A daemon that subscribes to packet capture requests via pubsub and posts the data to a configurable destination
  ☆32Updated 7 years ago
• ncsa / bhr-site
  Blackhole Router Site
  ☆32Updated 7 months ago
• ncsa / dumbno
  No elephant flows - flow shunting for Arista switches using EOS API
  ☆27Updated 3 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆44Updated 10 months ago
• haka-security / hakabana
  Hakabana monitoring tool using Haka, ElastcSearch and Kibana
  ☆20Updated 10 years ago
• Scribery / aushape
  A library and a tool for converting audit logs to XML and JSON
  ☆43Updated 6 years ago
• SSHCure / SSHCure
  Flow-based SSH intrusion detection system (NfSen plugin)
  ☆41Updated 8 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆102Updated 3 years ago
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year