bash_cata
Alert processor
Automates processing of network alerts from Suricata and adds IP addresses to MikroTik address lists.
A simple script that processes the generated Suricata eve-log in real time.
9 stars
1 watching
1 forks
Language: Shell
last commit: over 1 year ago
Linked from 1 awesome list
satta/awesome-suricataRelated projects:
| Repository | Description | Stars |
|---|---|---|
 pevma/massdeploysuricata | Automates the deployment and updating of Suricata network intrusion detection system software. | 9 |
 stamusnetworks/kts6 | Templates for Kibana 6 to visualize and analyze Suricata threat intelligence data | 24 |
 sebdraven/iocmite | Automates importing threat intelligence data into Suricata's surveillance system | 37 |
 jasonish/experimental-suricata-training | A shell-based training environment for Suricata intrusion detection and analysis | 6 |
 withsecurelabs/linuxcatscale | Automates incident response collection and processing on Linux hosts. | 274 |
 dcso/fever | A fast and extensible system for processing JSON events from security monitoring tools | 51 |
| stamusnetworks/kts | Customizable dashboards and visualizations for security monitoring and analysis using Suricata IDPS and the ELK stack. | 33 |
 eschava/psmqtt | A utility that collects and reports system metrics to an MQTT broker. | 159 |
 vp777/metahttp | Automates scanning of HTTP resources in a target network using XML External Entity (XXE) attacks | 37 |
 center-sun/suricata-kafka-output | Provides a Suricata output to Kafka using the Eve plugin | 14 |
 ditekshen/detection | Detects malicious network and host activity using Yara, Snort, and ClamAV signatures. | 213 |
| jasonish/docker-suricata | A Docker image for running Suricata, a network security system | 269 |
 certego/pcapmonkey | An analysis tool for packet capture files using Suricata and Zeek | 145 |
| stamusnetworks/suricata-language-server | An implementation of the Language Server Protocol for Suricata signatures, adding syntax check and auto-completion to editors. | 66 |
 jandelgado/rabtap | A tool for inspecting and manipulating RabbitMQ message flows | 265 |