Alternatives and similar repositories for rulesets:

Users that are interested in rulesets are comparing it to the libraries listed below

• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated 8 months ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated last year
• simple-evcorr / sec
  Simple Event Correlator releases
  ☆179Updated 2 months ago
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆35Updated last year
• ncsa / dumbno
  No elephant flows - flow shunting for Arista switches using EOS API
  ☆27Updated 3 years ago
• pentestfail / Bro-KEN
  An engine for Bro IDS using Kibana, ElasticSearch, & NXLOG (KEN)
  ☆10Updated 9 years ago
• JustinAzoff / netflow-indexer
  A program that uses xapian to index the flat file databases used by nfdump or flow-tools
  ☆36Updated 6 years ago
• Graylog2 / graylog-plugin-cef
  [DEPRECATED] CEF (Common Event Format) input plugin for Graylog
  ☆10Updated 3 years ago
• CESNET / ipfixcol
  IPFIXcol is an implementation of an IPFIX (RFC 7011) collector
  ☆65Updated 4 years ago
• corelight / json-streaming-logs
  Bro script package to create JSON formatted logs to stream into data analysis systems.
  ☆28Updated last year
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• jlmcgraw / network_configuration_navigator
  Convert an IOS/NXOS/ACE/ASA config file into basic HTML, creating links between commands referencing lists and that list (e.g. access lis…
  ☆14Updated 6 years ago
• ncsa / bhr-site
  Blackhole Router Site
  ☆32Updated 9 months ago
• assimilation / assimilation-official
  This is the official main repository for the Assimilation project
  ☆51Updated 6 months ago
• zrlram / afterglow
  graph visualization tool
  ☆78Updated 9 years ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 7 years ago
• spotify / pyfg
  ☆56Updated 2 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆45Updated 11 months ago
• zeek / package-manager
  A package manager for Zeek
  ☆44Updated last month
• bulutsal / networkanalysis
  Network Analysis using ElasticSearch and Kibana
  ☆45Updated 7 years ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆51Updated 6 months ago
• nbs-system / mapster
  Live events map as a Kibana plugin
  ☆74Updated 7 years ago
• farsightsec / nmsg
  network message encapsulation library
  ☆29Updated this week
• zeek / bro-plugins
  (OBSOLETE) Plugins for Bro
  ☆53Updated 7 years ago
• mdjunior / nfsen-plugins
  updated list with nefsen-plugins
  ☆23Updated 9 years ago
• SIDN / entrada
  Entrada - A tool for DNS big data analytics
  ☆50Updated 5 months ago
• Scribery / aushape
  A library and a tool for converting audit logs to XML and JSON
  ☆43Updated 7 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago