travisbgreen / hunting-rulesLinks
Suricata rules for network anomaly detection
☆173Updated last week
Alternatives and similar repositories for hunting-rules
Users that are interested in hunting-rules are comparing it to the libraries listed below
Sorting:
- Suricata Verification Tests - Testing Suricata Output☆115Updated this week
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆107Updated 4 years ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆79Updated 4 months ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆158Updated 6 months ago
- PCAP Samples for Different Post Exploitation Techniques☆367Updated 4 years ago
- zeek-scripts☆45Updated 6 years ago
- Mapping NSM rules to MITRE ATT&CK☆72Updated 5 years ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆95Updated 3 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆189Updated 4 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆264Updated 2 years ago
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆111Updated last year
- simple YARA-based IOC scanner☆169Updated 2 weeks ago
- Sigma rules from Joe Security☆223Updated 11 months ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆498Updated last month
- ☆54Updated last year
- Open source endpoint agent providing host information to Zeek. [v2]☆86Updated last month
- Zeek-Formatted Threat Intelligence Feeds☆379Updated this week
- Snorpy is a python script the gives a Gui interface to help those new to snort create rules.☆63Updated last year
- Live forensic artifacts collector☆171Updated last year
- Threat Hunting queries for various attacks☆239Updated this week
- The tool for updating your Suricata rules.☆280Updated 3 weeks ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆88Updated 2 years ago
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆28Updated 2 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆156Updated 7 months ago
- Log Entry to Sigma Rule Converter☆109Updated 3 years ago
- Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets☆140Updated 5 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆90Updated 5 months ago
- Standard-Format Threat Intelligence Feeds☆124Updated this week
- OASIS Cyber Threat Intelligence (CTI) TC: A repository for commonly used STIX objects in order to avoid needless duplication. https://gi…☆96Updated 4 months ago