thereisnotime / Snort-Rules

Related projects ⓘ

Alternatives and complementary repositories for Snort-Rules

• thongsia / Public-Pcaps
  ☆44Updated 6 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆74Updated 3 months ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆154Updated 2 months ago
• arvindpj007 / Suricata-Detect-DoS-Attack
  Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.
  ☆39Updated 4 years ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆52Updated 5 months ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆41Updated 5 years ago
• zeek / zeek-training
  Zeek Training Materials/Products
  ☆35Updated last month
• chrisjd20 / Snorpy
  Snorpy is a python script the gives a Gui interface to help those new to snort create rules.
  ☆60Updated 3 months ago
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆39Updated 4 years ago
• corelight / threat-hunting-guide
  ☆46Updated 2 years ago
• SimoneCagol / sigma-rules-crawler
  ☆29Updated this week
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆159Updated last week
• mrdraper / Packet2Snort
  A Python script that generates Snort IDS rules from network packets
  ☆25Updated 7 years ago
• neu5ron / TMInfosec
  Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.
  ☆65Updated 6 months ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆33Updated 7 months ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆68Updated last month
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆164Updated last year
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆20Updated last year
• nipunjaswal / networkforensics
  Hands-On Network Forensics by Nipun Jaswal
  ☆41Updated last year
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆50Updated 2 years ago
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆39Updated 2 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆27Updated 8 months ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆34Updated last year
• CESNET / Nemea
  System for network traffic analysis and anomaly detection.
  ☆87Updated 3 weeks ago
• pan-unit42 / Wireshark-quizzes
  Packet captures of malicious traffic for analysis using Wireshark
  ☆54Updated last year
• vlegoy / rcATT
  A python app to predict Att&ck tactics and techniques from cyber threat reports
  ☆116Updated last year
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• FrankHassanabad / suricata-sample-data
  Repository of creating different example suricata data sets
  ☆32Updated 5 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆102Updated 2 weeks ago