sudohyak / suricata-rulesLinks
Suricata rules for the new critical vulnerabilities
☆82Updated 4 years ago
Alternatives and similar repositories for suricata-rules
Users that are interested in suricata-rules are comparing it to the libraries listed below
Sorting:
- Suricata rules for network anomaly detection☆164Updated last month
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆104Updated 3 years ago
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆26Updated last year
- ☆54Updated 11 months ago
- Explore Indicators of Compromise Automatically☆94Updated 5 years ago
- zeek-scripts☆43Updated 6 years ago
- suricata IDS的规则,测试在用的,部分自写的规则视情况放出。☆18Updated 6 years ago
- Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))☆31Updated 5 years ago
- An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal☆202Updated 3 years ago
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆110Updated last year
- Collection of Suricata rule sets that I use modified to my environments.☆39Updated 4 years ago
- ☆43Updated 2 years ago
- ☆35Updated last year
- Quickly generate suricata rules for IOCs☆29Updated 4 years ago
- Code and yara rules to detect and analyze Cobalt Strike☆266Updated 4 years ago
- How to Zeek Sysmon Logs!☆101Updated 3 years ago
- Download pcap files from http://www.malware-traffic-analysis.net/☆78Updated 7 years ago
- Zeek IDS Dockerfile☆101Updated 2 years ago
- A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会☆165Updated 5 years ago
- This is an open source Snort rules repository☆30Updated 3 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆153Updated 2 months ago
- Ripple20 Critical Vulnerabilities - Detection Logic and Signatures☆12Updated 4 years ago
- Simple web shell scanner written in Golang.☆90Updated 6 years ago
- Repository of yara rules☆46Updated 9 years ago
- Elemental - An ATT&CK Threat Library☆317Updated 2 years ago
- 威胁检 测规则集☆15Updated 5 years ago
- PCAP Samples for Different Post Exploitation Techniques☆360Updated 4 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- ☆45Updated 3 years ago