stratosphereips / StratosphereLinuxIPS
Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.
☆712Updated this week
Related projects ⓘ
Alternatives and complementary repositories for StratosphereLinuxIPS
- Suricata, Snort and Zeek IDS rule and pcap testing system☆452Updated this week
- A set of Zeek scripts to detect ATT&CK techniques.☆565Updated 4 months ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆1,970Updated last week
- ReversingLabs YARA Rules☆770Updated last month
- FAME Automates Malware Evaluation☆862Updated last week
- Cyber Analytics Repository☆908Updated 7 months ago
- Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark☆425Updated 10 months ago
- A utility to safely generate malicious network traffic patterns and evaluate controls.☆1,264Updated 7 months ago
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆975Updated this week
- Extract and aggregate threat intelligence.☆832Updated 9 months ago
- Re-play Security Events☆1,605Updated 8 months ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆814Updated 2 months ago
- yarGen is a generator for YARA rules☆1,557Updated 5 months ago
- Scirius is a web application for Suricata ruleset management and threat hunting.☆635Updated last week
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆363Updated last week
- Indicators of Compromises (IOC) of our various investigations☆1,655Updated this week
- Super Next generation Advanced Reactive honEypot☆448Updated 5 months ago
- A Suricata based IDS/IPS/NSM distro☆1,481Updated 3 months ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,508Updated 4 months ago
- Mapping the MITRE ATT&CK Matrix with Osquery☆776Updated last year
- Security event correlation engine for ELK stack☆434Updated 4 months ago
- Detect Tactics, Techniques & Combat Threats☆2,067Updated this week
- Open Source EDR for Windows☆1,151Updated last year
- Actionable analytics designed to combat threats☆972Updated 2 years ago
- Your Everyday Threat Intelligence☆1,752Updated this week
- Indicators from Unit 42 Public Reports☆702Updated last month
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆431Updated last week
- MISP trainings, threat intel and information sharing training materials with source code☆390Updated this week
- Defanged Indicator of Compromise (IOC) Extractor.☆506Updated 2 months ago
- Cyber Threat Intelligence Repository expressed in STIX 2.0☆1,755Updated last week