Alternatives and similar repositories for zeek_anomaly_detector:

Users that are interested in zeek_anomaly_detector are comparing it to the libraries listed below

• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆69Updated 4 years ago
• zeek / zeek-training
  Zeek Training Materials/Products
  ☆37Updated 3 weeks ago
• hgascon / security-datasets
  A collection of resources for security data
  ☆40Updated 7 years ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆43Updated 6 years ago
• vlegoy / rcATT
  A python app to predict Att&ck tactics and techniques from cyber threat reports
  ☆118Updated last year
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆32Updated 5 months ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• ALFA-group / BRON
  "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…
  ☆92Updated 7 months ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆100Updated 3 years ago
• michaelhidalgo / attack-to-elk
  This program exports MITRE ATT&CK framework in ELK dashboard
  ☆78Updated 2 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 6 years ago
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆61Updated last year
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• oasis-open / cti-taxii-server
  OASIS TC Open Repository: TAXII 2 Server Library Written in Python
  ☆127Updated 10 months ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆67Updated 4 years ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆100Updated 2 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆63Updated 6 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆80Updated 6 years ago
• TW-NCERT / ctifeeds
  Cyber Threat Intelligence Feeds
  ☆92Updated 8 years ago
• FiveDirections / OpTC-data
  ☆100Updated 4 years ago
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆67Updated last year
• tjcruz-dei / ICS_PCAPS
  ICS Cybersecurity PCAP respository
  ☆51Updated 6 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆112Updated 6 years ago
• 401trg / detections
  This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…
  ☆121Updated 3 years ago
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 4 years ago
• FrankHassanabad / suricata-sample-data
  Repository of creating different example suricata data sets
  ☆32Updated 6 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆51Updated last month