Alternatives and similar repositories for zeek_anomaly_detector:

Users that are interested in zeek_anomaly_detector are comparing it to the libraries listed below

• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• FiveDirections / OpTC-data
  ☆103Updated 4 years ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆44Updated 6 years ago
• hgascon / security-datasets
  A collection of resources for security data
  ☆41Updated 7 years ago
• vlegoy / rcATT
  A python app to predict Att&ck tactics and techniques from cyber threat reports
  ☆119Updated last year
• ALFA-group / BRON
  "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…
  ☆92Updated 9 months ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 7 months ago
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆61Updated last year
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆101Updated 3 years ago
• SecurityNik / Data-Science-and-ML
  ☆35Updated 2 weeks ago
• zeek / zeek-training
  Zeek Training Materials/Products
  ☆37Updated last month
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆68Updated 4 years ago
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆75Updated 7 years ago
• tjcruz-dei / ICS_PCAPS
  ICS Cybersecurity PCAP respository
  ☆52Updated 6 years ago
• unfetter-discover / unfetter-insight
  Unfetter Insight performs natural language processing and analysis for text data to determine and convert to CTI Stix data automatically.
  ☆19Updated 6 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆51Updated 2 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆68Updated last year
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆80Updated 6 years ago
• amzn / zeek-plugin-enip
  Zeek network security monitor plugin that enables parsing of the Ethernet/IP and Common Industrial Protocol standards
  ☆47Updated 10 months ago
• freetaxii / stix2-graphics
  Graphics, icons, and diagrams to support STIX 2
  ☆46Updated 3 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• PaloAltoNetworks / ioc-parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆72Updated 9 months ago
• thongsia / Public-Pcaps
  ☆49Updated 6 years ago
• yukh1402 / cti-stix-diamond-activity-attack-graph
  STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling
  ☆32Updated 4 months ago
• zeek-flowmeter / zeek-flowmeter
  A Zeek script to generate features based on timing, volume and metadata for traffic classification.
  ☆55Updated 4 years ago
• oasis-open / cti-stix-visualization
  OASIS TC Open Repository: Lightweight visualization for STIX 2.0 objects and relationships
  ☆147Updated this week
• fhightower / ioc-finder
  Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…
  ☆164Updated last year
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆93Updated 3 years ago