opnsense-suricata-nmaps by aleksibovellan

OPNSense's Suricata IDS/IPS Detection Rules Against NMAP Scans

updated at June 2, 2024, 7:30 a.m.

1 +0

29 +2

3 +0

PacketStreamer by deepfence

Distributed tcpdump for cloud native environments

updated at June 1, 2024, 1:14 p.m.

13 +0

1,857 +3

253 +1

evebox by jasonish

Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search

updated at May 31, 2024, 11:03 p.m.

41 +0

407 +3

67 +0

scirius by StamusNetworks

Scirius is a web application for Suricata ruleset management and threat hunting.

updated at May 31, 2024, 1:19 p.m.

55 +0

599 +2

148 -1

leonidas by WithSecureLabs

Automated Attack Simulation in the Cloud, complete with detection use cases.

updated at May 31, 2024, 11:57 a.m.

26 +0

464 +1

58 +0

Malcolm by cisagov

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

updated at May 31, 2024, 11:57 a.m.

54 +0

1,786 +14

297 +2

SELKS by StamusNetworks

A Suricata based IDS/IPS/NSM distro

updated at May 30, 2024, 1:13 p.m.

93 +0

1,187 +4

260 +0

KTS7 by StamusNetworks

Kibana 7 Templates for Suricata IDPS Threat Hunting

updated at May 30, 2024, 10:31 a.m.

8 +0

35 +2

9 +0

docker-suricata by jasonish

A Suricata Docker image.

updated at May 30, 2024, 9:15 a.m.

13 +0

227 +1

72 +0

OTX-Suricata by AlienVault-OTX

The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX account.

updated at May 29, 2024, 7:15 a.m.

17 +0

103 -1

31 +0

suricata-analytics by StamusNetworks

None

updated at May 28, 2024, 3:19 a.m.

7 +0

23 +1

9 +0

hunting-rules by travisbgreen

Suricata rules for network anomaly detection

updated at May 23, 2024, 2:18 p.m.

16 +0

145 +0

41 +0

Suricata-Monitoring by VVelox

LibreNMS JSON / Nagios monitor for Suricata stats.

updated at May 20, 2024, 5:43 p.m.

2 +0

0 +0

0 +0

gonids by google

gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/

updated at May 20, 2024, 9:02 a.m.

13 +0

175 +0

58 +0

SEPTun-Mark-II by pevma

Suricata Extreme Performance Tuning guide - Mark II

updated at May 19, 2024, 1:34 p.m.

10 +0

111 +0

17 +0

dalton by secureworks

Suricata and Snort IDS rule and pcap testing system

updated at May 15, 2024, 2:29 a.m.

43 +0

430 +0

85 +0

aristotle by secureworks

None

updated at May 13, 2024, 11:46 a.m.

8 +0

28 +0

8 +0

py-idstools by jasonish

idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)

updated at May 10, 2024, 7:46 p.m.

34 +0

269 +0

81 +0

suricatax-rule-parser-rs by jasonish

None

updated at May 9, 2024, 5:50 p.m.

3 +0

7 +0

2 +0

suriwire by regit

Wireshark plugin to display Suricata analysis info

updated at May 9, 2024, 9:34 a.m.

4 +0

90 +0

15 +0