Alternatives and similar repositories for Snort-Rules

Users that are interested in Snort-Rules are comparing it to the libraries listed below

• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆81Updated 10 months ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆56Updated last month
• StamusNetworks / suricata-analytics
  ☆35Updated 5 months ago
• daffainfo / suricata-rules
  Suricata rules that can detect a wide range of threats, including malware, exploits, and other malicious activity especially web applicat…
  ☆46Updated last year
• leonov-av / vulristics
  Extensible framework for analyzing publicly available information about vulnerabilities
  ☆116Updated last month
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆90Updated last week
• FrankHassanabad / suricata-sample-data
  Repository of creating different example suricata data sets
  ☆34Updated 6 years ago
• juaromu / wazuh
  ☆19Updated 3 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆52Updated 2 years ago
• pan-unit42 / Wireshark-quizzes
  Packet captures of malicious traffic for analysis using Wireshark
  ☆59Updated last year
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆83Updated last week
• Security-Onion-Solutions / securityonion-soc
  ☆55Updated this week
• arvindpj007 / Suricata-Detect-DoS-Attack
  Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.
  ☆39Updated 5 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆33Updated last year
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• Prelude-SIEM / Prelude-SIEM
  The official Prelude SIEM GitHub of https://www.prelude-siem.org
  ☆30Updated 9 years ago
• corelight / threat-hunting-guide
  ☆51Updated 3 years ago
• elcabezzonn / Pcaps
  ☆49Updated last year
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆39Updated 4 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆170Updated 2 years ago
• tolgadevsec / Awesome-Deception
  An awesome list of resources on deception-based security with honeypots and honeytokens
  ☆174Updated 6 months ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆67Updated last year
• openargus / argus
  Argus Sensor
  ☆67Updated last month
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆26Updated last year
• JHUAPL / Low-Regret-Methodology
  ☆28Updated 4 years ago
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆62Updated 2 years ago
• thongsia / Public-Pcaps
  ☆55Updated 6 years ago
• stratosphereips / AIP
  The Attacker IP Prioritizer(AIP) dynamically generates resource-friendly IPv4 blocklists from Zeek network flows.
  ☆30Updated 7 months ago
• jctello / JCT-Wazuh
  Tools for Wazuh by Juan C. Tello
  ☆14Updated 3 years ago