Alternatives and similar repositories for suricata-rules

Users that are interested in suricata-rules are comparing it to the libraries listed below

• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆173Updated last week
• sudohyak / suricata-rules
  Suricata rules for the new critical vulnerabilities
  ☆83Updated 4 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆188Updated 2 weeks ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆86Updated last month
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆158Updated 6 months ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆79Updated last week
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆115Updated this week
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆280Updated 3 weeks ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆95Updated 3 years ago
• alienfault / ossim
  Open Source Security Information and event Management
  ☆102Updated 10 years ago
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆40Updated 5 years ago
• cyware-labs / Threat-Response-Docker
  ☆44Updated 2 years ago
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆112Updated last year
• GACWR / OpenUBA
  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…
  ☆455Updated last year
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 2 years ago
• CriticalPathSecurity / Public-Intelligence-Feeds
  Standard-Format Threat Intelligence Feeds
  ☆124Updated last week
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆240Updated 4 years ago
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆446Updated last year
• Securonix / AutonomousThreatSweeper
  Threat Hunting queries for various attacks
  ☆239Updated last week
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆45Updated 6 years ago
• TheHive-Project / Docker-Templates
  Docker configurations for TheHive, Cortex and 3rd party tools
  ☆126Updated 2 years ago
• sbousseaden / PCAP-ATTACK
  PCAP Samples for Different Post Exploitation Techniques
  ☆366Updated 4 years ago
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆183Updated 6 months ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆107Updated 4 years ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆90Updated 6 months ago
• StamusNetworks / KTS7
  Kibana 7 Templates for Suricata IDPS Threat Hunting
  ☆43Updated last week
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆379Updated this week
• SeisoLLC / zeek-kafka
  A Zeek log writer plugin that publishes to Kafka.
  ☆51Updated 2 months ago
• socprime / SigmaUI
  SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
  ☆189Updated 4 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆501Updated last month