Alternatives and similar repositories for Snort-Rules:

Users that are interested in Snort-Rules are comparing it to the libraries listed below

• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆76Updated 7 months ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆156Updated last week
• daffainfo / suricata-rules
  Suricata rules that can detect a wide range of threats, including malware, exploits, and other malicious activity especially web applicat…
  ☆43Updated 11 months ago
• thongsia / Public-Pcaps
  ☆49Updated 6 years ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆77Updated 5 months ago
• nipunjaswal / networkforensics
  Hands-On Network Forensics by Nipun Jaswal
  ☆46Updated last year
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆70Updated 4 years ago
• JHUAPL / Low-Regret-Methodology
  ☆27Updated 4 years ago
• zeek / zeek-training
  Zeek Training Materials/Products
  ☆37Updated last month
• cisagov / ACID
  ☆68Updated 7 months ago
• Security-Onion-Solutions / securityonion-soc
  ☆52Updated this week
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆54Updated 9 months ago
• The-Shadowserver-Foundation / api_utils
  Sample programs to access the API
  ☆80Updated last week
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆51Updated 2 years ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆44Updated 6 years ago
• mmguero-dev / Malcolm-PCAP
  This repository has been archived in favor of https://github.com/idaholab/Malcolm-Test-Artifacts
  ☆33Updated 3 months ago
• corelight / threat-hunting-guide
  ☆51Updated 3 years ago
• arvindpj007 / Suricata-Detect-DoS-Attack
  Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.
  ☆39Updated 4 years ago
• hgascon / security-datasets
  A collection of resources for security data
  ☆41Updated 7 years ago
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆358Updated this week
• StamusNetworks / suricata-analytics
  ☆33Updated 2 months ago
• FrankHassanabad / suricata-sample-data
  Repository of creating different example suricata data sets
  ☆34Updated 6 years ago
• luduslibrum / awesome-playbooks
  A curated repository of incident response playbooks
  ☆74Updated last year
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• chrisjd20 / Snorpy
  Snorpy is a python script the gives a Gui interface to help those new to snort create rules.
  ☆61Updated 7 months ago
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆84Updated 3 months ago
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆62Updated 11 months ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆64Updated 11 months ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆166Updated 2 weeks ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆98Updated last year