Alternatives and similar repositories for StratosphereLinuxIPS

Users that are interested in StratosphereLinuxIPS are comparing it to the libraries listed below

• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆510Updated last month
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆448Updated 2 weeks ago
• StamusNetworks / Clear-NDR-ISO
  A Suricata based NDR distribution
  ☆1,585Updated 3 months ago
• GACWR / OpenUBA
  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…
  ☆464Updated last year
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆671Updated 2 weeks ago
• alphasoc / flightsim
  A utility to safely generate malicious network traffic patterns and evaluate controls.
  ☆1,346Updated last year
• certtools / intelmq
  IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
  ☆1,107Updated last month
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆616Updated last year
• cisagov / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆2,307Updated 3 weeks ago
• mitre-attack / attack-stix-data
  STIX data representing MITRE ATT&CK
  ☆508Updated 2 weeks ago
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆894Updated last year
• OpenCTI-Platform / connectors
  OpenCTI Connectors
  ☆503Updated last week
• SuperCowPowers / zat
  Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark
  ☆451Updated last year
• mitre-attack / car
  Cyber Analytics Repository
  ☆969Updated 7 months ago
• center-for-threat-informed-defense / tram
  TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE AT…
  ☆539Updated 8 months ago
• yeti-platform / yeti
  Your Everyday Threat Intelligence
  ☆1,944Updated 2 months ago
• MISP / misp-galaxy
  Clusters and elements to attach to MISP events or attributes (like threat actors)
  ☆596Updated last week
• mushorg / snare
  Super Next generation Advanced Reactive honEypot
  ☆472Updated last year
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆478Updated this week
• mitre-attack / mitreattack-python
  A python module for working with ATT&CK
  ☆637Updated 2 weeks ago
• reversinglabs / reversinglabs-yara-rules
  ReversingLabs YARA Rules
  ☆887Updated 2 months ago
• mitre-attack / attack-website
  MITRE ATT&CK Website
  ☆556Updated 3 weeks ago
• mitre / cti
  Cyber Threat Intelligence Repository expressed in STIX 2.0
  ☆2,005Updated 3 weeks ago
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆382Updated this week
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆286Updated 2 months ago
• MISP / PyMISP
  Python library using the MISP Rest API
  ☆478Updated 2 weeks ago
• TheHive-Project / Cortex
  Cortex: a Powerful Observable Analysis and Active Response Engine
  ☆1,529Updated last month
• correlatedsecurity / Awesome-SOAR
  A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.
  ☆925Updated last year
• TonyPhipps / SIEM
  SIEM Tactics, Techiques, and Procedures
  ☆684Updated this week
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆447Updated last year