Arkime (formerly Moloch) is an open source, large scale, full packet cap...
Zeek is a powerful network analysis framework that is much different fro...
Security Onion 16.04 - Linux distro for threat hunting, enterprise secur...
Suricata git repository maintained by the OISF
The Hybrid/Multi-cloud IP Service Mesh
Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
Passive DNS Capture and Monitoring Toolkit
** README ** This repo has MOVED to https://github.com/quadrantsec/sagan
The tool for updating your Suricata rules.
A Suricata Docker image.
The default package source of the Zeek Package Manager. Wrote a package?...
Suricata rules for network anomaly detection
Cyber Defence Monitoring Course Suite :: Suricata, Moloch and others
Assists music production by grouping standalone programs into sessions. ...
Mapping NSM rules to MITRE ATT&CK