31 Open source projects that are alternatives of or similar to Pulledpork

QNSM is network security monitoring framework based on DPDK.

Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search

Mapping NSM rules to MITRE ATT&CK

A Suricata Docker image.

gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/

Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)

An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk

collector for XDR and security posture service

An extremely crude, lightweight Web Frontend for Suricata/Bro to be used with BriarIDS

RDP honeypot

S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator

server for indexing and querying passive DNS observations

A website and framework for testing NIDS detection

dpdk infrastructure for software acceleration. Currently working on RX and ACL pre-filter

Ansible playbook automation for pfelk

This project is a SIEM with SIRP and Threat Intel, all in one.

pcapdj - dispatch pcap files

fast, extensible, versatile event router for Suricata's EVE-JSON format

🍯 T-Pot - The All In One Honeypot Platform 🐝

Nmap&Zmap特征识别，绕过IDS探测

CVE-2020-16898 (Bad Neighbor) Microsoft Windows TCP/IP Vulnerability Detection Logic and Rule

idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)

An All-In-One home intrusion detection system (IDS) solution for the Raspberry PI.

Suricata IDS/IPS log analytics using the Elastic Stack.

The tool for updating your Suricata rules.

A lightweight tool to score network traffic and flag anomalies

DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat detection

Operation Wocao - Indicators of Compromise

A Suricata based IDS/IPS distro

Scirius is a web application for Suricata ruleset management.

Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等