Alternatives and similar repositories for suricata-rules

Users that are interested in suricata-rules are comparing it to the libraries listed below

• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆169Updated 5 months ago
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆83Updated 4 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆115Updated this week
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆87Updated 4 months ago
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆444Updated last year
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆494Updated last month
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆79Updated 2 months ago
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆111Updated last year
• Security-Onion-Solutions / securityonion-soc
  ☆58Updated this week
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆95Updated 3 years ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆85Updated last week
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆39Updated 5 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆187Updated this week
• Securonix / AutonomousThreatSweeper
  Threat Hunting queries for various attacks
  ☆239Updated this week
• cyware-labs / Threat-Response-Docker
  ☆43Updated 2 years ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆279Updated 2 months ago
• sbousseaden / PCAP-ATTACK
  PCAP Samples for Different Post Exploitation Techniques
  ☆365Updated 4 years ago
• codeyourweb / fastfinder
  Incident Response - Fast suspicious file finder
  ☆246Updated 3 years ago
• chrisjd20 / Snorpy
  Snorpy is a python script the gives a Gui interface to help those new to snort create rules.
  ☆63Updated last year
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆479Updated 11 months ago
• center-for-threat-informed-defense / attack_to_cve
  🚨ATTENTION🚨 The CVE mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as…
  ☆240Updated last year
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆158Updated 5 months ago
• GACWR / OpenUBA
  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…
  ☆449Updated last year
• StamusNetworks / KTS7
  Kibana 7 Templates for Suricata IDPS Threat Hunting
  ☆43Updated last week
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆376Updated this week
• CriticalPathSecurity / Public-Intelligence-Feeds
  Standard-Format Threat Intelligence Feeds
  ☆122Updated this week
• alienfault / ossim
  Open Source Security Information and event Management
  ☆101Updated 9 years ago
• Shuffle / python-apps
  Apps to be used for Shuffle automation. Most of Shuffle's apps (2500+) are generated from APIs, and available in the search engine below:
  ☆116Updated 2 weeks ago
• socprime / SigmaUI
  SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
  ☆189Updated 4 years ago
• advanced-threat-research / Ripple-20-Detection-Logic
  Ripple20 Critical Vulnerabilities - Detection Logic and Signatures
  ☆12Updated 4 years ago