Alternatives and similar repositories for bitmaul

Users that are interested in bitmaul are comparing it to the libraries listed below

• dnstap / dnstap.pb
  flexible, structured event replication format for DNS servers (Protocol Buffers schema)
  ☆25Updated 4 months ago
• brimdata / zync
  Kafka connector to sync Zed lakes to and from Kafka topics
  ☆18Updated last year
• DNS-OARC / dnsjit
  Engine for capturing, parsing and replaying DNS
  ☆58Updated 2 months ago
• fmadio / pcap_merge
  High performance time ordered PCAP merging utility
  ☆23Updated 3 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆79Updated 5 years ago
• mozilla / zept
  INACTIVE - http://mzl.la/ghe-archive - Zeek Extreme Performance Tuning
  ☆26Updated 5 years ago
• rhaist / surevego
  suricata eve.json parser in Go
  ☆15Updated 6 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆53Updated 2 months ago
• up9inc / basenine
  Schema-free, document-oriented streaming database that optimized for monitoring network traffic in real-time
  ☆39Updated 3 years ago
• samuelesabella / ebpflow
  This repo aims to offer a packet flow tracer based on bpf
  ☆13Updated 5 years ago
• runZeroInc / recog-go
  Recog-Go: Pattern Recognition using Rapid7 Recog
  ☆111Updated last year
• D4-project / architecture
  Architecture - design and implementation of the D4 project architecture
  ☆16Updated 4 years ago
• s-index / go-cve-search
  lightweight CVE search
  ☆21Updated 2 years ago
• D4-project / sensor-d4-tls-fingerprinting
  Extract TLS certificates from pcap files or network interfaces, fingerprint TLS client/server interactions with ja3/ja3s
  ☆37Updated 5 years ago
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆20Updated 2 months ago
• ccdcoe / go-peek
  Simple streaming pre-processor and enrichment tool for structured logs.
  ☆11Updated 2 years ago
• openargus / clients
  Argus clients program repo
  ☆22Updated 2 weeks ago
• dnstap / dnstap-ldns
  reference dnstap decoding utility
  ☆20Updated 2 years ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated last year
• ulfox / nettrust
  Dynamic Outbound Firewall Authorizer
  ☆22Updated 3 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 9 months ago
• pforemski / entropy-clustering
  Entropy clustering of IPv6 networks, see https://ipv6hitlist.github.io/
  ☆13Updated 6 years ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆89Updated last year
• Velocidex / vfilter
  A library implementing a generic SQL like query language.
  ☆20Updated last week
• auditNG / go-audit-container
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆16Updated 6 years ago
• JustinAzoff / zeek-clickhouse
  ☆13Updated 3 years ago
• DevoInc / sightingdb
  Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen
  ☆16Updated last year
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆30Updated 2 years ago