#Suricata

Showing 17 of 17 repositories tagged #suricata, ranked by stars

OISF
OISF
suricata

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

Score
100
★ 6.4k ⑂ 1.7k +2/day
C
cisagov
cisagov
Malcolm

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

Score
92
★ 2.5k ⑂ 427 +2/day
Python
StamusNetworks
StamusNetworks
Clear-NDR-ISO

A Suricata based NDR distribution

Score
62
★ 1.6k ⑂ 289
Shell
al0ne
al0ne
suricata-rules

Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等

Score
46
★ 1.3k ⑂ 305 +1/day
tenzir
tenzir
tenzir

Tenzir is the data pipeline engine for security teams.

Score
85
★ 747 ⑂ 105
C++
StamusNetworks
StamusNetworks
scirius

Scirius is a web application for Suricata ruleset management and threat hunting.

Score
77
★ 679 ⑂ 155 +1/day
Python
iqiyi
iqiyi
qnsm

QNSM is network security monitoring framework based on DPDK.

Score
31
★ 528 ⑂ 188
C
jasonish
jasonish
evebox

Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search

Score
69
★ 496 ⑂ 78 +1/day
Rust
V1D1AN
V1D1AN
S1EM

This project is a SIEM with SIRP and Threat Intel, all in one.

Score
0
★ 462 ⑂ 88
Shell
EgeBalci
EgeBalci
deoptimizer

Evasion by machine code de-optimization.

Score
15
★ 428 ⑂ 31
Rust
travisbgreen
travisbgreen
hunting-rules

Suricata rules for network anomaly detection

Score
54
★ 182 ⑂ 43
Kwangsa19
Kwangsa19
Ketmanto-Cybersecurity-Portfolio

I developed a rigorous cybersecurity project portfolio on mock clients covering NIST, audits, Linux, SQL, assets, threats, vulnerabilities, detection, incident response, escalation, Wireshark, tcpdump, IDS (Suricata), SIEM (Splunk, Chronicle), and Python automation.

Score
0
★ 174 ⑂ 43
Jupyter Notebook
bgenev
bgenev
impulse-xdr

Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables deeper visibility than legacy tools.

Score
23
★ 142 ⑂ 8
Python
FCSC-FR
FCSC-FR
shovel

Web interface to explore Suricata EVE outputs

Score
38
★ 99 ⑂ 13
JavaScript
brimdata
brimdata
brimcap

Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)

Score
0
★ 99 ⑂ 13 +1/day
Go
gl0bal01
gl0bal01
malware-analysis-claude-skills

Complete Claude skills toolkit for professional malware analysis. 5 specialized skills covering triage, dynamic analysis, detection engineering, and reporting. Works with REMnux/FlareVM offline environments.

Score
8
★ 42 ⑂ 3
Python
AbstractionsLab
AbstractionsLab
idps-escape

IDPS-ESCAPE: Intrusion Detection and Prevention System - Enhanced Security through a Cooperative Anomaly Prediction Engine. SOAR via a Risk-aware Anomaly Detection-based Automated Response (RADAR) subsystem and a deep learning-based AD subsystem (SONAR), integrated with Wazuh, Flowintel, Suricata

Score
0
★ 15 ⑂ 2
Python
Related Topics
#security#cybersecurity#ids#network-security#threat-hunting#zeek#siem#ips#nsm#pcap#incident-response#network-monitor

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly