Malcolm by cisagov

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

updated at May 5, 2024, 9:26 a.m.

54 +0

1,747 +2

291 +1

gonids by google

gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/

updated at May 4, 2024, 10:37 a.m.

13 +0

174 -1

58 +0

docker-suricata by jasonish

A Suricata Docker image.

updated at May 4, 2024, 10:36 a.m.

14 +0

222 +0

71 +1

evebox by jasonish

Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search

updated at May 4, 2024, 10:36 a.m.

41 +0

401 +0

67 +0

dalton by secureworks

Suricata and Snort IDS rule and pcap testing system

updated at May 4, 2024, 5:24 a.m.

43 +0

428 -1

86 +0

SEPTun by pevma

Suricata Extreme Performance Tuning guide

updated at May 4, 2024, 2:24 a.m.

22 +0

200 +1

27 +0

SEPTun-Mark-II by pevma

Suricata Extreme Performance Tuning guide - Mark II

updated at May 4, 2024, 2:24 a.m.

10 +0

109 +1

17 -1

SELKS by StamusNetworks

A Suricata based IDS/IPS/NSM distro

updated at May 3, 2024, 5:30 a.m.

93 +0

1,172 +2

260 +0

scirius by StamusNetworks

Scirius is a web application for Suricata ruleset management and threat hunting.

updated at May 3, 2024, 5:26 a.m.

55 +0

593 +2

149 +0

PacketStreamer by deepfence

Distributed tcpdump for cloud native environments

updated at May 2, 2024, 6:30 p.m.

13 +0

1,854 +2

251 -2

suricatax-rule-parser-rs by jasonish

None

updated at May 2, 2024, 2:51 p.m.

NEW!

3 +0

7 +0

2 +0

hunting-rules by travisbgreen

Suricata rules for network anomaly detection

updated at April 30, 2024, 5:04 p.m.

16 +0

143 +1

41 +0

suricata-analytics by StamusNetworks

None

updated at April 30, 2024, 4:08 a.m.

7 +0

21 +1

8 +0

suricata-4-analysts by StamusNetworks

The Security Analyst’s Guide to Suricata

updated at April 29, 2024, 12:57 p.m.

6 +0

45 +0

9 +0

suricata-sample-data by FrankHassanabad

Repository of creating different example suricata data sets

updated at April 29, 2024, 5:36 a.m.

2 +0

31 +1

9 +1

OTX-Suricata by AlienVault-OTX

The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX account.

updated at April 28, 2024, 8:08 a.m.

17 +0

98 +0

31 +0

leonidas by WithSecureLabs

Automated Attack Simulation in the Cloud, complete with detection use cases.

updated at April 27, 2024, 8:50 a.m.

26 +0

462 +0

58 +0

suricata-language-server by StamusNetworks

Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and auto-completion to your preferred editor once it is configured.

updated at April 25, 2024, 6:20 a.m.

6 +0

55 +0

5 +0

KTS7 by StamusNetworks

Kibana 7 Templates for Suricata IDPS Threat Hunting

updated at April 23, 2024, 11:41 a.m.

8 +0

33 +0

9 +0

Amsterdam by StamusNetworks

Docker based Suricata, Elasticsearch, Logstash, Kibana, Scirius aka SELKS

updated at April 22, 2024, 5:30 p.m.

26 +0

183 +0

42 +0