A Suricata based IDS/IPS/NSM distro
-
Updated
Apr 22, 2022 - Shell
#
suricata
Here are 131 public repositories matching this topic...
Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
-
Updated
Apr 8, 2021
pcap
secops
suricata
packet-sniffer
network-analysis
soc
observability
traffic-monitoring
packet-capture
zeek
snort
security-tools
tcpdump-like
infosectools
forensics-tools
-
Updated
Apr 25, 2022 - Go
Scirius is a web application for Suricata ruleset management and threat hunting.
-
Updated
Apr 21, 2022 - Python
QNSM is network security monitoring framework based on DPDK.
-
Updated
Sep 27, 2021 - C
idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
-
Updated
Apr 25, 2022 - Python
CVE-2020-16898 (Bad Neighbor) Microsoft Windows TCP/IP Vulnerability Detection Logic and Rule
microsoft
lua
windows-10
rce
suricata
atr
cve
neighbor-discovery
buffer-overflow
mcafee
neighbor-discovery-protocol
suricata-rule
icmpv6
buffer-overflow-vulnerability
tcpip-stack
cve-2020-16898
bad-neighbor
badneighbor
-
Updated
Oct 26, 2020 - Lua
Suricata IDS/IPS log analytics using the Elastic Stack.
-
Updated
Jul 28, 2021 - Shell
An All-In-One home intrusion detection system (IDS) solution for the Raspberry PI.
raspberry-pi
iot
monitor
raspberrypi
bro
suricata
intrusion-detection
raspbian
securityonion
internetofthings
-
Updated
Jun 30, 2018 - Python
gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/
-
Updated
Oct 22, 2021 - Go
DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat detection
python
elasticsearch
kibana
logstash
netflow
ipfix
python3
dashboards
suricata
network-analysis
agents
network-traffic
zeek
dynamite-nsm
-
Updated
Mar 8, 2022 - Python
A lightweight tool to score network traffic and flag anomalies
-
Updated
Mar 23, 2022 - Go
Suricata rules for network anomaly detection
cybersecurity
suricata
ids
network-monitoring
threat-hunting
nsm
network-security
threat-intelligence
anomaly-detection
suricata-rule
cyber-threat-intelligence
lateral-movement
-
Updated
Feb 7, 2022
dpdk infrastructure for software acceleration. Currently working on RX and ACL pre-filter
-
Updated
Mar 10, 2021 - C
Cyber Defence Monitoring Course Suite :: Suricata, Moloch and others
-
Updated
Jan 12, 2022 - Jupyter Notebook
S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
-
Updated
Jul 8, 2021 - C#
collector for XDR and security posture service
nmap
suricata
collector
xdr
snyk
wazuh
modsecurity-nginx
soar
zaproxy
dependency-check
kube-bench
trivy
falco-security
kube-hunter
cspm
cwpp
-
Updated
Apr 26, 2022 - C++
add dpdk interface and packet processing to suricata in worker mode
-
Updated
Aug 7, 2020 - C
Mapping NSM rules to MITRE ATT&CK
-
Updated
Aug 29, 2020
A website and framework for testing NIDS detection
-
Updated
Aug 29, 2021 - Shell
satta
commented
May 4, 2021
It would be nice to have GELF (https://docs.graylog.org/en/4.0/pages/gelf.html#gelf-payload-specification) compatible JSON logging output, as an additional logging option.
Improve this page
Add a description, image, and links to the suricata topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the suricata topic, visit your repo's landing page and select "manage topics."
It would be nice to have GELF (https://docs.graylog.org/en/4.0/pages/gelf.html#gelf-payload-specification) compatible JSON logging output, as an additional logging option.