Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
-
Updated
May 14, 2024 - Python
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
Open source security data pipelines.
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
An telegram bot that monitors suricata logs and sends alerts based on attack id's
Assemblyline 4 network capture analysis service
OPNSense's Suricata IDS/IPS Detection Rules Against NMAP Scans
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Repository for configuration files, scripts, code, and other information on the Watchtower Stack
Web interface to explore Suricata EVE outputs
Scirius is a web application for Suricata ruleset management and threat hunting.
Suricata/Snort extension for VS Code
Suricata rules for network anomaly detection
Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
A Suricata based IDS/IPS/NSM distro
Add a description, image, and links to the suricata topic page so that developers can more easily learn about it.
To associate your repository with the suricata topic, visit your repo's landing page and select "manage topics."