thereisnotime / Snort-Rules

Related projects: ⓘ

• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆72Updated last month
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆32Updated 2 years ago
• thongsia / Public-Pcaps
  ☆39Updated 5 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• vlegoy / rcATT
  A python app to predict Att&ck tactics and techniques from cyber threat reports
  ☆111Updated 10 months ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆40Updated 5 years ago
• michaelhidalgo / attack-to-elk
  This program exports MITRE ATT&CK framework in ELK dashboard
  ☆77Updated last year
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆152Updated 3 weeks ago
• chrisjd20 / Snorpy
  Snorpy is a python script the gives a Gui interface to help those new to snort create rules.
  ☆60Updated last month
• neu5ron / TMInfosec
  Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.
  ☆63Updated 4 months ago
• FrankHassanabad / suricata-sample-data
  Repository of creating different example suricata data sets
  ☆30Updated 5 years ago
• Kirtar22 / ATTACK-Threat_Intel
  Graph Representation of MITRE ATT&CK's CTI data
  ☆47Updated 4 years ago
• corelight / threat-hunting-guide
  ☆43Updated 2 years ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆49Updated 3 months ago
• nipunjaswal / networkforensics
  Hands-On Network Forensics by Nipun Jaswal
  ☆38Updated last year
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆105Updated 4 months ago
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆37Updated 2 years ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆83Updated 2 years ago
• Hackinfinity / Cyber-Security-Dataset-collections
  Awesome Cyber-Security Data-sets Collection
  ☆18Updated 6 years ago
• s-tip / stip-common
  Seamless Threat Intelligence Platform
  ☆47Updated 7 months ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆153Updated last week
• The-Shadowserver-Foundation / api_utils
  Sample programs to access the API
  ☆57Updated 2 months ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆98Updated 3 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆99Updated this week
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆166Updated last year
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆37Updated 4 years ago
• vfeedio / pyvfeed
  Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions
  ☆94Updated last year
• zeek / zeek-training
  Zeek Training Materials/Products
  ☆34Updated 10 months ago
• zeek / zeekctl
  Tool for managing Zeek deployments.
  ☆53Updated last month
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆61Updated this week