Alternatives and similar repositories for apps:

Users that are interested in apps are comparing it to the libraries listed below

• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆76Updated last year
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆32Updated 6 months ago
• team-cymru / iocs
  We publish indicators of compromise related to our stories here. See https://blog.team-cymru.com/ for more information.
  ☆9Updated 3 years ago
• 0x4D31 / Presentations
  Some of the presentations given by me
  ☆18Updated 4 months ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• schmalle / MysqlPot
  A mysql honeypot, still very very early stage
  ☆21Updated 12 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 8 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆30Updated last week
• zmap / pybulkwhois
  Python framework for manipulating bulk WHOIS data from RIRs
  ☆20Updated 2 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• redBorder / daq
  Snort/Suricata DAQ module with DPDK patch
  ☆11Updated 11 months ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 5 months ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated 10 months ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• sdnewhop / sdwan-harvester
  Automatically enumerate and fingerprint SD-WAN nodes on the internet
  ☆50Updated 3 years ago
• DCSO / slinkwatch
  automatic enumeration and maintenance of Suricata monitoring interfaces
  ☆11Updated 5 years ago
• 0xxon / zeek-tls-log-alternative
  Zeek scripts that provide an alternative log file logging TLS/SSL traffic
  ☆10Updated 3 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆101Updated 3 years ago
• zeek / zeek-agent-framework
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Updated 4 years ago
• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆90Updated 6 months ago
• bhdresh / SnortRules
  This is an open source Snort rules repository
  ☆30Updated 2 years ago
• certtools / tag2domain
  A mapping project between tags (annotations, labels) and domain names
  ☆11Updated 11 months ago
• H21lab / json2pcap
  Script for pcap modification, reconstruction and anonymization
  ☆18Updated 4 months ago
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• logstash-plugins / logstash-codec-nmap
  NMap XML decoding for logstash
  ☆28Updated 2 years ago
• staaldraad / fastfluxanalysis
  Scripts to detect Fast-Flux and DGA using DNS query responses
  ☆42Updated 7 years ago
• defensivedepth / WinTAP
  Mirror network traffic from one interface to another on Windows
  ☆25Updated 5 years ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 3 years ago
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 2 months ago