Suricata rules for network anomaly detection
☆183Feb 7, 2026Updated last month
Alternatives and similar repositories for hunting-rules
Users that are interested in hunting-rules are comparing it to the libraries listed below
Sorting:
- Example Suricata rules implementing some of my detection tactics☆22Jan 13, 2023Updated 3 years ago
- Quickly generate suricata rules for IOCs☆28Apr 30, 2021Updated 4 years ago
- Suricata rule and intel index☆33Jan 13, 2026Updated last month
- A tools to work on suricata stats.log file.☆29Oct 14, 2015Updated 10 years ago
- Suricata rules for the new critical vulnerabilities☆84Jan 26, 2021Updated 5 years ago
- Mapping NSM rules to MITRE ATT&CK☆73Aug 29, 2020Updated 5 years ago
- Collection of Suricata rule sets that I use modified to my environments.☆39Sep 13, 2020Updated 5 years ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆57Nov 20, 2025Updated 3 months ago
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆485Feb 19, 2026Updated 2 weeks ago
- Attack Detection☆1,358Aug 31, 2022Updated 3 years ago
- Community-based CybergON-powered Suricata rules☆12Jul 5, 2022Updated 3 years ago
- Method of finding interesting domains using keywords + JARMs☆13Jan 30, 2023Updated 3 years ago
- Scirius is a web application for Suricata ruleset management and threat hunting.☆675Dec 23, 2025Updated 2 months ago
- ☆35Dec 9, 2023Updated 2 years ago
- A Yara Lua output script for Suricata☆20Apr 7, 2019Updated 6 years ago
- ☆13Feb 25, 2021Updated 5 years ago
- Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置☆143Oct 14, 2019Updated 6 years ago
- Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等☆1,261Jul 8, 2023Updated 2 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆511Feb 27, 2026Updated last week
- ☆17Feb 21, 2025Updated last year
- Mass Suricata rules creator, from a list of domain☆14Sep 14, 2018Updated 7 years ago
- ☆42Sep 16, 2022Updated 3 years ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆86Feb 26, 2026Updated last week
- Suricata rules to detect Winnti communication☆16Mar 5, 2018Updated 8 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆172May 23, 2023Updated 2 years ago
- suricata IDS的规则,测试在用的,部分自写的规则视情况放出。☆18Apr 16, 2019Updated 6 years ago
- An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.☆17Oct 30, 2021Updated 4 years ago
- A Suricata based NDR distribution☆1,588Sep 13, 2025Updated 5 months ago
- The tool for updating your Suricata rules.☆293Oct 31, 2025Updated 4 months ago
- Kibana 7 Templates for Suricata IDPS Threat Hunting☆43Dec 23, 2025Updated 2 months ago
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆115Apr 26, 2024Updated last year
- 《横向移动攻击与检测技术》专栏文章☆17Sep 5, 2019Updated 6 years ago
- Statistics parsing for suricata☆18Nov 14, 2013Updated 12 years ago
- PCAP Samples for Different Post Exploitation Techniques☆368Apr 29, 2021Updated 4 years ago
- gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…☆192Jul 18, 2025Updated 7 months ago
- OpenWRT Suricata package☆57Feb 19, 2018Updated 8 years ago
- A curated list of awesome things related to Suricata☆221Nov 21, 2025Updated 3 months ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆108Jun 6, 2024Updated last year
- suricata rules to pcap☆10Mar 25, 2021Updated 4 years ago