Alternatives and similar repositories for StratosphereLinuxIPS

Users that are interested in StratosphereLinuxIPS are comparing it to the libraries listed below

• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆416Updated this week
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆481Updated last month
• GACWR / OpenUBA
  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…
  ☆434Updated last year
• StamusNetworks / SELKS
  A Suricata based IDS/IPS/NSM distro
  ☆1,547Updated 11 months ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆656Updated 3 weeks ago
• alphasoc / flightsim
  A utility to safely generate malicious network traffic patterns and evaluate controls.
  ☆1,315Updated last year
• certtools / intelmq
  IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
  ☆1,063Updated this week
• SuperCowPowers / zat
  Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark
  ☆439Updated last year
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆596Updated last year
• OpenCTI-Platform / connectors
  OpenCTI Connectors
  ☆447Updated this week
• mitre-attack / car
  Cyber Analytics Repository
  ☆948Updated last month
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆461Updated last month
• cisagov / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆2,146Updated 2 weeks ago
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆872Updated last year
• mitre-attack / mitreattack-python
  A python module for working with ATT&CK
  ☆569Updated last week
• yeti-platform / yeti
  Your Everyday Threat Intelligence
  ☆1,879Updated this week
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆374Updated this week
• MISP / misp-galaxy
  Clusters and elements to attach to MISP events or attributes (like threat actors)
  ☆572Updated last week
• correlatedsecurity / Awesome-SOAR
  A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.
  ☆873Updated 10 months ago
• gfek / Real-CyberSecurity-Datasets
  Public datasets to help you address various cyber security problems.
  ☆433Updated 3 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆178Updated 3 months ago
• jasonish / docker-suricata
  A Suricata Docker image.
  ☆286Updated last month
• mitre-attack / attack-stix-data
  STIX data representing MITRE ATT&CK
  ☆422Updated 2 months ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆275Updated last week
• reversinglabs / reversinglabs-yara-rules
  ReversingLabs YARA Rules
  ☆828Updated last week
• TheHive-Project / Cortex
  Cortex: a Powerful Observable Analysis and Active Response Engine
  ☆1,441Updated last month
• DinoTools / dionaea
  Home of the dionaea honeypot
  ☆754Updated 11 months ago
• eset / malware-ioc
  Indicators of Compromises (IOC) of our various investigations
  ☆1,792Updated last week
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆454Updated 9 months ago
• TheHive-Project / Cortex-Analyzers
  Cortex Analyzers Repository
  ☆464Updated 2 weeks ago