Alternatives and similar repositories for elastalert

Users that are interested in elastalert are comparing it to the libraries listed below

• DavidJBianco / Bro2Graph
  ☆25Updated 9 years ago
• Phillipmartin / gopassivedns
  PassiveDNS in Go
  ☆125Updated 5 years ago
• demisto / alfred
  A Slack bot to add security info to messages containing URLs, hashes and IPs
  ☆71Updated 10 months ago
• dyurk / splogTASH
  SPL to lucene translator
  ☆15Updated 10 years ago
• fox-it / bro-scripts
  Bro-IDS scripts
  ☆50Updated 8 years ago
• rocknsm / rock-dashboards
  Dashboards and loader for ROCK NSM dashboards
  ☆49Updated 2 years ago
• eSentire / malfeed
  Feed for verious malicious IPs such as malware and botnets
  ☆12Updated 9 years ago
• jonschipp / ISLET
  Isolated, Scalable, & Lightweight Environment for Training
  ☆111Updated 6 years ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 8 years ago
• open-nsm / meetings
  Meeting notes
  ☆14Updated 9 years ago
• ameihm0912 / geomodel
  IP geolocation for authentication events with MozDef
  ☆10Updated 6 years ago
• ciscocsirt / netsarlacc
  ☆38Updated 6 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• blacktop / docker-bro
  Bro IDS Dockerfile
  ☆129Updated 5 years ago
• exp0se / bro-intel-generator
  Script for generating Bro intel files from pdf or html reports
  ☆77Updated 9 years ago
• CrowdStrike / cs-bro
  Bro scripts written by CrowdStrike Services
  ☆147Updated 4 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 9 years ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆115Updated 4 years ago
• hillar / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch
  ☆61Updated 8 years ago
• packetloop / packetpig
  Packetpig - Open Source Big Data Security Analytics
  ☆298Updated 7 years ago
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆36Updated 3 months ago
• sandialabs / scot
  Sandia Cyber Omni Tracker (SCOT)
  ☆249Updated 8 months ago
• criticalstack / bro-scripts
  ☆71Updated 3 years ago
• harvard-itsecurity / qradar-seculert-push
  Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!
  ☆18Updated 11 years ago
• ncsa / bro-clickhouse
  ☆16Updated 6 years ago
• zeek / bro-plugins
  (OBSOLETE) Plugins for Bro
  ☆53Updated 7 years ago
• mixmodeai / bro_intel_linter
  Bro Intel Feed Linter
  ☆26Updated 5 years ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 10 years ago
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 7 years ago
• shirkdog / hunter-nsm
  Simple install script for Suricata/Zeek with JSON logging on FreeBSD
  ☆18Updated 3 months ago