Alternatives and similar repositories for pfaudit

Users that are interested in pfaudit are comparing it to the libraries listed below

• opc40772 / suricata-graylog
  ☆23Updated 6 years ago
• OwlH-net / OwlH-UI
  OwlH Master API Web User Interface
  ☆12Updated last year
• Homas / ioc2rpz
  ioc2rpz is a place where threat intelligence meets DNS.
  ☆111Updated 7 months ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated last week
• lozzd / AutoNmap
  Automated daily scan using Nmap and report on the differences
  ☆92Updated 7 years ago
• deeso / fleet-deployment
  ☆15Updated 6 years ago
• sneakymonk3y / foxhound-nsm
  Foxhound: Blackbox - A Raspberry Pi NSM
  ☆37Updated 7 years ago
• eg-cert / dockpot
  ☆52Updated 5 years ago
• Alir3z4 / ansible-suricata
  An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.
  ☆16Updated 3 years ago
• TKCERT / testssl.sh-masscan
  Make TLS/SSL security mass scans with testssl.sh and import results into ElasticSearch
  ☆109Updated 6 years ago
• juju4 / ansible-zeek
  setup zeek, previously Bro IDS
  ☆18Updated 2 weeks ago
• veeral-patel / incidents
  Please use https://github.com/veeral-patel/true-positive instead
  ☆69Updated 2 years ago
• siemonster / logstash
  Example configuration files for Logstash
  ☆44Updated 5 years ago
• StamusNetworks / KTS6
  Kibana 6 Templates for Suricata IDPS Threat Hunting
  ☆24Updated 6 years ago
• alias454 / graylog-zeek-content-pack
  BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to captu…
  ☆19Updated 5 years ago
• pfelk / ansible
  Ansible playbook automation for pfelk
  ☆23Updated 3 years ago
• Nclose-ZA / elastalert_hive_alerter
  This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.
  ☆27Updated 4 years ago
• Graylog2 / graylog-plugin-threatintel
  Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
  ☆155Updated last year
• adhdproject / adhd-artillery
  The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.
  ☆11Updated 6 years ago
• mikermcneil / fleet-osquery-in-a-box
  Simple Docker-based quickstart for osquery, Fleet, and ELK stack
  ☆63Updated 2 years ago
• Truvis / Splunk_TA_Truvis_Suricata5
  This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup…
  ☆15Updated 5 years ago
• treussart / ProbeManager
  Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...
  ☆72Updated 6 years ago
• jtschichold / panwdbl
  Simple block lists hub for PAN-OS DBL feature
  ☆35Updated 6 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 4 years ago
• j91321 / ansible-role-auditbeat
  Ansible role to install auditbeat for security monitoring. (Ruleset included)
  ☆16Updated last year
• corelight / raspi-corelight
  Corelight@Home script
  ☆43Updated last year
• robvandenbrink / vsphere-hardening-guide
  vSphere Security Audit Scripts, Based on the vSphere Hardening Guide.
  ☆26Updated 4 years ago
• jmslsr / bulk-whois
  A quick way to perform a bulk whois query. Utilizes Team Cymru's service. Requires netcat.
  ☆11Updated 13 years ago
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 4 years ago
• ProtonMail / ct-monitor
  A monitoring tool for certificate transparency of ProtonMail's SSL/TLS certificates
  ☆50Updated 7 years ago