Alternatives and similar repositories for Snort-Rules

Users that are interested in Snort-Rules are comparing it to the libraries listed below

• thongsia / Public-Pcaps
  ☆57Updated 6 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆83Updated last week
• mmguero-dev / Malcolm-PCAP
  This repository has been archived in favor of https://github.com/idaholab/Malcolm-Test-Artifacts
  ☆37Updated 8 months ago
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆95Updated 3 weeks ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆167Updated 3 months ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆83Updated 3 months ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆85Updated last month
• pan-unit42 / Wireshark-quizzes
  Packet captures of malicious traffic for analysis using Wireshark
  ☆59Updated 2 years ago
• daffainfo / suricata-rules
  Suricata rules that can detect a wide range of threats, including malware, exploits, and other malicious activity especially web applicat…
  ☆50Updated last year
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆184Updated 4 months ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆57Updated 3 months ago
• The-Shadowserver-Foundation / api_utils
  Sample programs to access the API
  ☆89Updated 3 months ago
• Security-Onion-Solutions / securityonion-soc
  ☆55Updated this week
• StamusNetworks / suricata-analytics
  ☆36Updated 3 weeks ago
• satta / awesome-suricata
  A curated list of awesome things related to Suricata
  ☆185Updated 5 months ago
• Cisco-Talos / IOCs
  Indicators of Compromise
  ☆212Updated last week
• cocaman / malware-bazaar
  Python scripts for Malware Bazaar
  ☆154Updated last year
• corelight / threat-hunting-guide
  ☆52Updated 3 years ago
• sandflysecurity / sandfly-entropyscan
  Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …
  ☆158Updated last year
• arvindpj007 / Suricata-Detect-DoS-Attack
  Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.
  ☆39Updated 5 years ago
• mitre / caldera-ot
  MITRE Caldera™ for OT Plugins & Capabilities
  ☆217Updated this week
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆171Updated 2 years ago
• StopDDoS / packet-captures
  packet captures of real-world ddos attacks
  ☆162Updated last month
• pan-unit42 / wireshark-workshop
  pcaps of traffic for traffic analysis workshop
  ☆84Updated 3 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆67Updated last year
• OpenSecureCo / Demos
  Repo Filled With Follow Along Guides
  ☆79Updated 3 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆33Updated last year
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆374Updated this week
• rodanmaharjan / ThreatIntelligence
  This repository contains Malicious Indicator of Compromise (IOC) data, which is vital for cybersecurity professionals to enhance threat d…
  ☆101Updated this week
• viper-framework / viper2
  File analysis and management framework.
  ☆88Updated last year