Alternatives and similar repositories for apps

Users that are interested in apps are comparing it to the libraries listed below

• zmap / pybulkwhois
  Python framework for manipulating bulk WHOIS data from RIRs
  ☆21Updated 3 years ago
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆26Updated 7 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 7 months ago
• defensivedepth / WinTAP
  Mirror network traffic from one interface to another on Windows
  ☆25Updated 5 years ago
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆20Updated last month
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆31Updated 11 months ago
• 0x4D31 / quick
  QUICk - a go library based on gopacket for analyzing QUIC CHLO messages
  ☆22Updated 4 years ago
• DCSO / slinkwatch
  automatic enumeration and maintenance of Suricata monitoring interfaces
  ☆11Updated 5 years ago
• 0x4D31 / Presentations
  Some of the presentations given by me
  ☆18Updated 6 months ago
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆77Updated last year
• caesar0301 / pcapdpi
  Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…
  ☆23Updated 9 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆101Updated 3 years ago
• jasonish / suricata-trafficid.ARCHIVED
  Application and service identification rules for Suricata
  ☆29Updated 2 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆30Updated 2 months ago
• woanware / bgp-watcher
  Prototype system to monitor BGP routes and alert when anomalies are identified
  ☆15Updated 6 years ago
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆88Updated 2 months ago
• nccgroup / yaml2yara
  Generate bulk YARA rules from YAML input
  ☆22Updated 5 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 7 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• logstash-plugins / logstash-codec-nmap
  NMap XML decoding for logstash
  ☆28Updated 2 years ago
• rsabir / bro-dsniff
  A dsniff project using bro
  ☆10Updated 9 years ago
• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆91Updated 2 weeks ago
• MITRECND / bulk
  A content inspecting SMTP proxy
  ☆17Updated 10 years ago
• corelight / top-dns
  Top DNS Measurement for Bro
  ☆11Updated 4 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• nytr0gen / go-cidr
  CIDR to IP List Tool
  ☆14Updated 9 years ago
• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 8 years ago
• staaldraad / fastfluxanalysis
  Scripts to detect Fast-Flux and DGA using DNS query responses
  ☆43Updated 8 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago