Alternatives and similar repositories for trisul-scripts:

Users that are interested in trisul-scripts are comparing it to the libraries listed below

• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆109Updated 11 years ago
• JustinAzoff / zeek-pdns
  Passive DNS collection using Zeek
  ☆182Updated last year
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• fox-it / bro-scripts
  Bro-IDS scripts
  ☆50Updated 8 years ago
• TravisFSmith / MyBroElk
  Scripts for Bro IDS and ELK Stack
  ☆56Updated 9 years ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated 9 months ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆102Updated 4 years ago
• sooshie / bro-scripts
  Various Bro scripts
  ☆96Updated 8 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆183Updated last year
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year
• dnsdb / dnsdb-query
  DNSDB query scripts
  ☆75Updated 5 years ago
• EmergingThreats / et-luajit-scripts
  ☆75Updated 3 years ago
• ciscocsirt / netsarlacc
  ☆38Updated 6 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• treussart / ProbeManager
  Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...
  ☆72Updated 5 years ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆93Updated 3 years ago
• CIRCL / bgp-ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN).
  ☆105Updated last year
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 6 years ago
• zeek / bro-scripts
  Misc. Bro scripts
  ☆63Updated 7 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆102Updated 3 years ago
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆100Updated 4 years ago
• sethhall / bro-apt1
  This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.
  ☆47Updated 11 years ago
• criticalstack / bro-scripts
  ☆71Updated 3 years ago
• jpsenior / threataggregator
  Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…
  ☆79Updated 9 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 3 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆62Updated 10 years ago
• pevma / rule2alert
  Improvements of/over the original rule2alert
  ☆56Updated 10 years ago